CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

Dell vApp Manger, versions prior to 9.2.4.x contain an arbitrary file read vulnerability. A remote attacker could potentially exploit this vulnerability to read arbitrary files from the target system.

CWE 1 Total

Learn more

CWE-22: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSS 1 Total

Learn more

Score	Severity	Version	Vector String
7.5	HIGH	3.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Product Status

Learn more

Versions 1 Total

Default Status: unaffected

affected

Credits

Dell Technologies would like to thank 33a6099 for reporting these issues. finder

References 1 Total

https://www.dell.com/support/kbdoc/en-us/000220427/dsa-2023-443-dell-powermaxos-5978-dell-unisphere-360-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtual-appliance-dell-solutions-enabler-virtual-appliance-and-dell-powermax-eem-security-update-for-multiple-vulnerabilities
external site
vendor-advisory

Updated: 2024-08-02

This container includes required additional information provided by the CVE Program for this vulnerability.

References 1 Total

https://www.dell.com/support/kbdoc/en-us/000220427/dsa-2023-443-dell-powermaxos-5978-dell-unisphere-360-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtual-appliance-dell-solutions-enabler-virtual-appliance-and-dell-powermax-eem-security-update-for-multiple-vulnerabilities
external site
vendor-advisoryx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Dell EMC

Description

CWE 1 Total

CVSS 1 Total

Product Status

Credits

References 1 Total

CVE Program

References 1 Total