exploitDog

CVE-2022-46756

Опубликовано: 01 фев. 2023

Источник: nvd

CVSS3: 8.2

CVSS3: 6.7

EPSS Низкий

Описание

Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker.

Ссылки

https://www.dell.com/support/kbdoc/000206943
Vendor Advisory
https://www.dell.com/support/kbdoc/000206943
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:vxrail_manager:*:*:*:*:*:vmware_vcenter:*:*

Версия до 7.0.410 (исключая)

EPSS

Процентиль: 33%

0.00133

Низкий

8.2 High

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-668

CWE-668

Связанные уязвимости

GHSA-g237-mm39-6j87

CVSS3: 6.7

github

около 3 лет назад

Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlying OS. Exploitation may lead to a system take over by an attacker.

EPSS

Процентиль: 33%

0.00133

Низкий

8.2 High

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-668

CWE-668