Vulnerabilities > CVE-2022-46756 - Exposure of Resource to Wrong Sphere vulnerability in Dell Vxrail Manager

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

dell

CWE-668

NVD

Published: 2023-02-01

Updated: 2023-11-07

Summary

Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Vxrail Manager -	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://www.dell.com/support/kbdoc/000206943