Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2022-34434 | First vendor Publication | 2022-10-11 |
| Vendor | Cve | Last vendor Modification | 2023-06-29 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | |||
|---|---|---|---|
| Overall CVSS Score | 6.7 | ||
| Base Score | 6.7 | Environmental Score | 6.7 |
| impact SubScore | 5.9 | Temporal Score | 6.7 |
| Exploitabality Sub Score | 0.8 | ||
| Attack Vector | Local | Attack Complexity | Low |
| Privileges Required | High | User Interaction | None |
| Scope | Unchanged | Confidentiality Impact | High |
| Integrity Impact | High | Availability Impact | High |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : | |||
|---|---|---|---|
| Cvss Base Score | N/A | Attack Range | N/A |
| Cvss Impact Score | N/A | Attack Complexity | N/A |
| Cvss Expoit Score | N/A | Authentication | N/A |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Cloud Mobility for Dell Storage versions 1.3.0 and earlier contains an Improper Access Control vulnerability within the Postgres database. A threat actor with root level access to either the vApp or containerized versions of Cloud Mobility may potentially exploit this vulnerability, leading to the modification or deletion of tables that are required for many of the core functionalities of Cloud Mobility. Exploitation may lead to the compromise of integrity and availability of the normal functionality of the Cloud Mobility application. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34434 |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2010-03-30 | Name : Debian Security Advisory DSA 2022-1 (mediawiki) File : nvt/deb_2022_1.nasl |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-03-25 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2022.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
| Source | Url |
|---|---|
| MISC | https://www.dell.com/support/kbdoc/en-vc/000203434/dsa-2022-264-cloud-mobilit... |
Alert History
| Date | Informations |
|---|---|
| 2023-06-29 21:28:21 |
|
| 2022-10-14 09:27:14 |
|
| 2022-10-12 00:27:15 |
|
| 2022-10-11 21:27:11 |
|
