CVE-2022-34368
MEDIUMDell EMC NetWorker 19.2.1.x-19.7.0.0 - Authenticated Privilege Escalation
Title source: llmDescription
Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non admin user could exploit this vulnerability and gain access to restricted resources.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.dell.com/support/kbdoc/en-us/000201652/dsa-2022-194-dell-emc-networker-security-update-for-insufficient-privileges-vulnerability
Scores
CVSS v3
6.1
EPSS
0.0033
EPSS Percentile
24.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L
Details
CWE
CWE-755
CWE-280
Status
published
Products (2)
dell/emc_networker
19.7.0.0
dell/emc_networker
19.2.1.0 - 19.6.1.2
Published
Aug 30, 2022
Tracked Since
Feb 18, 2026