CVE-2024-22221

CWE-89SQL Injection3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 56.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Dell UnityDell Unity Operating Environment
Timeline
PublishedFeb 12

Description

Dell Unity, versions prior to 5.4, contains SQL Injection vulnerability. An authenticated attacker could potentially exploit this vulnerability, leading to exposure of sensitive information.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5dell/unity< 5.4

🔴Vulnerability Details

2
CVEList
CVE-2024-22221: Dell Unity, versions prior to 52024-02-12
GHSA
GHSA-w4cj-85p2-w8wp: Dell Unity, versions prior to 52024-02-12
CVE-2024-22221 (MEDIUM CVSS 6.5) | Dell Unity | cvebase.io