CVE-2022-34368

MEDIUM

Dell Emc Networker < 19.6.1.2 - Improper Exception Handling

Title source: rule

Description

Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non admin user could exploit this vulnerability and gain access to restricted resources.

References (1)

[Patch, Vendor Advisory] https://www.dell.com/support/kbdoc/en-us/000201652/dsa-2022-194-dell-emc-networker-security-update-for-insufficient-privileges-vulnerability

Scores

CVSS v3 6.1

EPSS 0.0010

EPSS Percentile 27.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L

Classification

CWE

CWE-755 CWE-280

Status published

Affected Products (2)

dell/emc_networker < 19.6.1.2

dell/emc_networker

Timeline

Published Aug 30, 2022

Tracked Since Feb 18, 2026