CVE-2022-22549

Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A unauthenticated remote attacker could potentially exploit this vulnerability, leading to a man-in-the-middle capture of administrative credentials.
Configurations

Configuration 1 (hide)

cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:47

Type Values Removed Values Added
CVSS v2 : 6.8
v3 : 8.1
v2 : 6.8
v3 : 7.5
References () https://www.dell.com/support/kbdoc/en-us/000195815/dsa-2022-002-dell-emc-powerscale-onefs-security-update-for-multiple-vulnerabilities - () https://www.dell.com/support/kbdoc/en-us/000195815/dsa-2022-002-dell-emc-powerscale-onefs-security-update-for-multiple-vulnerabilities -

16 Sep 2024, 23:15

Type Values Removed Values Added
Summary (en) Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A unauthenticated remote attacker could potentially exploit this vulnerability, leading to a man-in-the-middle capture of administrative credentials. (en) Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A unauthenticated remote attacker could potentially exploit this vulnerability, leading to a man-in-the-middle capture of administrative credentials.

20 Apr 2022, 14:46

Type Values Removed Values Added
References (MISC) https://www.dell.com/support/kbdoc/000195815 - (MISC) https://www.dell.com/support/kbdoc/000195815 - Patch, Vendor Advisory
CWE CWE-295
CVSS v2 : unknown
v3 : unknown
v2 : 6.8
v3 : 8.1
CPE cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*

12 Apr 2022, 18:52

Type Values Removed Values Added
New CVE

Information

Published : 2022-04-12 18:15

Updated : 2024-11-21 06:47


NVD link : CVE-2022-22549

Mitre link : CVE-2022-22549

CVE.ORG link : CVE-2022-22549


JSON object : View

Products Affected

dell

  • emc_powerscale_onefs
CWE
CWE-295

Improper Certificate Validation