CVE-2022-34368
First published: Thu Jul 21 2022(Updated: )
Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. Authenticated non admin user could exploit this vulnerability and gain access to restricted resources.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC NetWorker | >=19.2.1.0<19.6.1.2 | |
| Dell EMC NetWorker | =19.7.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-34368?
CVE-2022-34368 is classified as a high severity vulnerability due to its potential for exploitation by authenticated non-admin users.
How do I fix CVE-2022-34368?
To remediate CVE-2022-34368, users should upgrade their Dell EMC NetWorker to a patched version that addresses the insufficient privileges vulnerability.
Who is affected by CVE-2022-34368?
CVE-2022-34368 affects authenticated non-admin users of Dell EMC NetWorker versions 19.2.1.x through 19.7.0.0.
What type of vulnerability is CVE-2022-34368?
CVE-2022-34368 is an Improper Handling of Insufficient Permissions or Privileges vulnerability.
What resources can be accessed by exploiting CVE-2022-34368?
Exploiting CVE-2022-34368 could allow authenticated non-admin users to gain access to restricted resources within the affected software.
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/remedy
- agent/last-modified-date
- agent/severity
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell emc networker
- version/dell emc networker/19.2.1.0
- version/dell emc networker/19.7.0.0