CVE-2022-34363
Possible ATT&CK Techniques 1AI
T1078 · Valid AccountsAffected Version Matrix 4
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Dell | Unisphere 360 | < 9.2.3.12 | affected |
| Dell | Unisphere for PowerMax | < 10.0.0.5 EEM: 10.0.0.968 | affected |
< 9.2.3.22 EEM: 9.2.4.26 | affected | ||
| Dell | Unisphere for PowerMax Virtual Appliance | < 9.2.3.22 EEM: 9.2.4.26 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-34363
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不恰当
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Dell | Unisphere for PowerMax | 0 ~ 10.0.0.5 EEM: 10.0.0.968 | - | |
| Dell | Unisphere for PowerMax Virtual Appliance | 0 ~ 9.2.3.22 EEM: 9.2.4.26 | - | |
| Dell | Unisphere 360 | 0 ~ 9.2.3.12 | - |
II. Public POCs for CVE-2022-34363
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-34363
请登录查看更多情报信息。
Vendor Pages for CVE-2022-34363 (1)
- myaccess.dell.com - Sign Invendor-advisory
Same Patch Batch · Dell · 2026-05-22 · 10 CVEs total
| CVE-2021-21508 | 6.7 MEDIUM | VxRail<7.0.200明文密码存储漏洞 |
| CVE-2025-26483 | 6.1 MEDIUM | Dell PowerFlex Manager 4.6.2及以下版本开放重定向漏洞 |
| CVE-2022-31231 | 5.9 MEDIUM | Dell ECS 3.5/3.6 IAM访问控制漏洞 |
| CVE-2025-32751 | 5.5 MEDIUM | Dell PowerFlex Manager<=4.6.2敏感信息不当地存储漏洞 |
| CVE-2025-32747 | 5.3 MEDIUM | Dell PowerFlex Manager <=4.6.2 特权提升漏洞 |
| CVE-2025-32749 | 5.3 MEDIUM | Dell PowerFlex Manager <=4.6.2 信息泄露漏洞 |
| CVE-2025-32745 | 4.2 MEDIUM | Dell PowerFlex Manager<=4.6.2证书验证缺陷 |
| CVE-2025-32746 | 4.0 MEDIUM | Dell PowerFlex Manager<=4.6.2敏感信息不安全存储漏洞 |
| CVE-2025-46371 | 3.6 LOW | Dell PowerFlex Manager<=4.6.2 加密算法漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-285
- CVE-2026-45187
Apache OFBiz: Improper Authorization in Scheduled Job Creati - CVE-2026-8747
Z-BlogPHP Commend Approval c_system_event.php CheckComment i - CVE-2026-8743
Open5GS AMF/MME context.c ran_ue_find_by_amf_ue_ngap_id impr - CVE-2026-45345
Open WebUI: Missing authorization check at the model update - CVE-2026-45365
Open WebUI: Authenticated users can bypass model access cont
V. Comments for CVE-2022-34363
No comments yet