CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

dell

evasa_provider_virtual_appliance

3 known vulnerabilities · sorted by CVSS score

CVE-2022-45104

HIGH8.8

Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands on the underlying system.

dell / evasa_provider_virtual_appliance+3

Network

Published Feb 11, 2023

CVE-2022-34397

MEDIUM6.9

Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 10.0.0.5 and below contains an authorization bypass vulnerability, allowing users to perform actions in which they are not authorized.

dell / evasa_provider_virtual_appliance+4

Adjacent

Published Feb 13, 2023

CVE-2022-31233

MEDIUM6.3

Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to.

dell / evasa_provider_virtual_appliance+7

Adjacent

Published Aug 31, 2022