CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31231

Dell ECS, versions 3.5 and 3.6, contain an Improper Access Control in the Identity and Access Management (IAM) module. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to gaining read access to unauthorized data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.8%

CVSS Severity

CVSS v3 Score 5.9

References

https://dellservices.lightning.force.com/lightning/r/Lightning_Knowledge__kav/ka06P0000004RFTQA2/view

Products affected by CVE-2022-31231

Dell » Elastic Cloud Storage » Version: N/A

cpe:2.3:a:dell:elastic_cloud_storage:-
Dell » Elastic Cloud Storage » Version: 3.0

cpe:2.3:a:dell:elastic_cloud_storage:3.0
Dell » Elastic Cloud Storage » Version: 3.6.0.0

cpe:2.3:a:dell:elastic_cloud_storage:3.6.0.0
Dell » Elastic Cloud Storage » Version: 3.6.0.1

cpe:2.3:a:dell:elastic_cloud_storage:3.6.0.1
Dell » Elastic Cloud Storage » Version: 3.6.1.0

cpe:2.3:a:dell:elastic_cloud_storage:3.6.1.0
Dell » Elastic Cloud Storage » Version: 3.6.1.1

cpe:2.3:a:dell:elastic_cloud_storage:3.6.1.1
Dell » Elastic Cloud Storage » Version: 3.6.1.2

cpe:2.3:a:dell:elastic_cloud_storage:3.6.1.2
Dell » Elastic Cloud Storage » Version: 3.6.2.2

cpe:2.3:a:dell:elastic_cloud_storage:3.6.2.2
Dell » Elastic Cloud Storage » Version: 3.6.2.3

cpe:2.3:a:dell:elastic_cloud_storage:3.6.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31231

Products

Pricing

Contact Us