Dell EMC PowerStore, contain(s) an Improper Restriction of Excessive Authentication Attempts Vulnerability in PowerStore Manager GUI. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to password brute-forcing. Account takeover is possible if weak passwords are used by users.
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/000201283 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
History
30 Jul 2022, 01:56
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.dell.com/support/kbdoc/000201283 - Patch, Vendor Advisory | |
CWE | CWE-307 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Dell emc Powerstore 3200t Firmware
Dell emc Powerstore 1200t Firmware Dell emc Powerstore 500t Dell emc Powerstore 1200t Dell emc Powerstore 5200t Firmware Dell emc Powerstore 500t Firmware Dell emc Powerstore 5200t Dell emc Powerstore 3200t Dell emc Powerstore 9200t Firmware Dell Dell emc Powerstore 9200t |
|
CPE | cpe:2.3:h:dell:emc_powerstore_1200t:-:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_powerstore_500t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:dell:emc_powerstore_3200t:-:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_powerstore_9200t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_powerstore_1200t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:dell:emc_powerstore_5200t:-:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_powerstore_3200t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_powerstore_5200t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:dell:emc_powerstore_9200t:-:*:*:*:*:*:*:* cpe:2.3:h:dell:emc_powerstore_500t:-:*:*:*:*:*:*:* |
21 Jul 2022, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-07-21 04:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-31234
Mitre link : CVE-2022-31234
CVE.ORG link : CVE-2022-31234
JSON object : View
Products Affected
dell
- emc_powerstore_3200t_firmware
- emc_powerstore_1200t
- emc_powerstore_5200t_firmware
- emc_powerstore_3200t
- emc_powerstore_1200t_firmware
- emc_powerstore_9200t_firmware
- emc_powerstore_5200t
- emc_powerstore_500t
- emc_powerstore_9200t
- emc_powerstore_500t_firmware
CWE
CWE-307
Improper Restriction of Excessive Authentication Attempts