Vulnerability Details CVE-2022-34374
Dell Container Storage Modules 1.2 contains an OS command injection in goiscsi and gobrick libraries. A remote authenticated malicious user with low privileges could exploit this vulnerability leading to to execute arbitrary OS commands on the affected system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2022-34374
-
cpe:2.3:a:dell:container_storage_modules:1.0.0
-
cpe:2.3:a:dell:container_storage_modules:1.0.1
-
cpe:2.3:a:dell:container_storage_modules:1.1.0
-
cpe:2.3:a:dell:container_storage_modules:1.2.0
-
cpe:2.3:a:dell:container_storage_modules:1.2.1