ID
VAR-202302-0069
CVE
CVE-2022-45097
TITLE
Dell PowerScale OneFS Vulnerability in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-012302
DESCRIPTION
Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability. A low privileged network attacker could potentially exploit this vulnerability, leading to escalation of privileges, and information disclosure. Dell PowerScale OneFS Exists in unspecified vulnerabilities.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state
Trust: 1.8
sources:
NVD: CVE-2022-45097 //
JVNDB: JVNDB-2022-012302 //
VULHUB: VHN-442692 //
VULMON: CVE-2022-45097
AFFECTED PRODUCTS
| vendor: | dell | model: | emc powerscale onefs | scope: | gte | version: | 9.4.0.0 | Trust: 1.0 |
| vendor: | dell | model: | emc powerscale onefs | scope: | gte | version: | 9.1.0.0 | Trust: 1.0 |
| vendor: | dell | model: | emc powerscale onefs | scope: | lt | version: | 9.4.0.9 | Trust: 1.0 |
| vendor: | dell | model: | emc powerscale onefs | scope: | gte | version: | 9.2.1.0 | Trust: 1.0 |
| vendor: | dell | model: | emc powerscale onefs | scope: | lt | version: | 9.2.1.18 | Trust: 1.0 |
| vendor: | dell | model: | emc powerscale onefs | scope: | lt | version: | 9.1.0.25 | Trust: 1.0 |
| vendor: | デル | model: | emc powerscale onefs | scope: | - | version: | - | Trust: 0.8 |
| vendor: | デル | model: | emc powerscale onefs | scope: | eq | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-012302 //
NVD: CVE-2022-45097
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2022-012302 //
CNNVD: CNNVD-202302-007 //
NVD: CVE-2022-45097 //
NVD: CVE-2022-45097
PROBLEMTYPE DATA
| problemtype: | CWE-842 | Trust: 1.0 |
| problemtype: | NVD-CWE-Other | Trust: 1.0 |
| problemtype: | others (CWE-Other) [NVD evaluation ] | Trust: 0.8 |
| problemtype: | CWE-276 | Trust: 0.1 |
sources:
VULHUB: VHN-442692 //
JVNDB: JVNDB-2022-012302 //
NVD: CVE-2022-45097
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202302-007
TYPE
other
Trust: 0.6
sources:
CNNVD: CNNVD-202302-007
PATCH
| title: | DSA-2022-295 | url: | https://www.dell.com/support/kbdoc/en-us/000206357/dell-emc-powerscale-onefs-security-updates-for-multiple-security-vulnerabilities | Trust: 0.8 |
| title: | Dell PowerScale OneFS Security vulnerabilities | url: | http://123.124.177.30/web/xxk/bdxqById.tag?id=224361 | Trust: 0.6 |
| title: | - | url: | https://github.com/Live-Hack-CVE/CVE-2022-45097 | Trust: 0.1 |
sources:
VULMON: CVE-2022-45097 //
JVNDB: JVNDB-2022-012302 //
CNNVD: CNNVD-202302-007
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-45097 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2022-012302 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202302-007 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-442692 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-45097 | Trust: 0.1 |
sources:
VULHUB: VHN-442692 //
VULMON: CVE-2022-45097 //
JVNDB: JVNDB-2022-012302 //
CNNVD: CNNVD-202302-007 //
NVD: CVE-2022-45097
REFERENCES
| url: | https://www.dell.com/support/kbdoc/en-us/000206357/dell-emc-powerscale-onefs-security-updates-for-multiple-security-vulnerabilities | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-45097 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-45097/ | Trust: 0.6 |
| url: | https://github.com/live-hack-cve/cve-2022-45097 | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-442692 //
VULMON: CVE-2022-45097 //
JVNDB: JVNDB-2022-012302 //
CNNVD: CNNVD-202302-007 //
NVD: CVE-2022-45097
SOURCES
| db: | VULHUB | id: | VHN-442692 |
| db: | VULMON | id: | CVE-2022-45097 |
| db: | JVNDB | id: | JVNDB-2022-012302 |
| db: | CNNVD | id: | CNNVD-202302-007 |
| db: | NVD | id: | CVE-2022-45097 |
LAST UPDATE DATE
2024-08-14T14:43:29.552000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-442692 | date: | 2023-02-08T00:00:00 |
| db: | VULMON | id: | CVE-2022-45097 | date: | 2023-02-01T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-012302 | date: | 2023-08-29T03:23:00 |
| db: | CNNVD | id: | CNNVD-202302-007 | date: | 2023-06-28T00:00:00 |
| db: | NVD | id: | CVE-2022-45097 | date: | 2023-11-07T03:54:33.587 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-442692 | date: | 2023-02-01T00:00:00 |
| db: | VULMON | id: | CVE-2022-45097 | date: | 2023-02-01T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-012302 | date: | 2023-08-29T00:00:00 |
| db: | CNNVD | id: | CNNVD-202302-007 | date: | 2023-02-01T00:00:00 |
| db: | NVD | id: | CVE-2022-45097 | date: | 2023-02-01T05:15:12.860 |