cbcvebase.
CVE-2022-45103
published 2023-01-18

CVE-2022-45103: Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. A low…

PriorityP335medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
0.74%
50.1th percentile
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to read arbitrary files on the underlying file system.

Affected

11 ranges
VendorProductVersion rangeFixed in
dellemc_solutions_enabler_virtual_appliance< 9.2.3.69.2.3.6
dellemc_unisphere_for_powermax< 9.2.3.229.2.3.22
dellemc_unisphere_for_powermax>= 10.0.0.0 < 10.0.0.510.0.0.5
dellemc_unisphere_for_powermax_virtual_appliance< 9.2.3.229.2.3.22
dellemc_vasa_provider_virtual_appliance< 9.2.4.159.2.4.15
dellpowermax_os
dellsolutions_enabler< 9.2.3.69.2.3.6
dellsolutions_enabler>= 10.0.0.0 < 10.0.0.510.0.0.5
dellunisphere_360< 9.2.3.129.2.3.12
dellunisphere_for_powermax_vapp
dellvasa_provider< 9.2.4.229.2.4.22
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.