CVE-2024-22229
First published: Wed Jan 24 2024(Updated: )
Dell Unity, versions prior to 5.4, contain a vulnerability whereby log messages can be spoofed by an authenticated attacker. An attacker could exploit this vulnerability to forge log entries, create false alarms, and inject malicious content into logs that compromise logs integrity. A malicious attacker could also prevent the product from logging information while malicious actions are performed or implicate an arbitrary user for malicious activities.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Unity Operating Environment | =5.3.0.0.5.120 | |
| Dell Unity Xt Operating Environment | =5.3.0.0.5.120 | |
| Dell Unityvsa Operating Environment | =5.3.0.0.5.120 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/description
- agent/type
- agent/first-publish-date
- agent/author
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- collector/epss-latest
- source/FIRST
- agent/tags
- agent/epss
- vendor/dell
- canonical/dell unity operating environment
- version/dell unity operating environment/5.3.0.0.5.120
- canonical/dell unity xt operating environment
- version/dell unity xt operating environment/5.3.0.0.5.120
- canonical/dell unityvsa operating environment
- version/dell unityvsa operating environment/5.3.0.0.5.120