Vulnerability Description
Dell EMC PowerStore, contains an OS command injection Vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the PowerStore underlying OS, with the privileges of the vulnerable application. Exploitation may lead to an elevation of privilege.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Emc Powerstore 500T Firmware | < 3.0.0.0-1732745 |
| Dell | Emc Powerstore 500T | - |
| Dell | Emc Powerstore 1200T Firmware | < 3.0.0.0-1732745 |
| Dell | Emc Powerstore 1200T | - |
| Dell | Emc Powerstore 3200T Firmware | < 3.0.0.0-1732745 |
| Dell | Emc Powerstore 3200T | - |
| Dell | Emc Powerstore 5200T Firmware | < 3.0.0.0-1732745 |
| Dell | Emc Powerstore 5200T | - |
| Dell | Emc Powerstore 9200T Firmware | < 3.0.0.0-1732745 |
| Dell | Emc Powerstore 9200T | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/000201283Vendor Advisory
- https://www.dell.com/support/kbdoc/000201283Vendor Advisory
FAQ
What is CVE-2022-22555?
CVE-2022-22555 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Dell EMC PowerStore, contains an OS command injection Vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on...
How severe is CVE-2022-22555?
CVE-2022-22555 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22555?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Emc Powerstore 500T Firmware, Dell Emc Powerstore 500T, Dell Emc Powerstore 1200T Firmware, Dell Emc Powerstore 1200T, Dell Emc Powerstore 3200T Firmware.