Dell Unisphere PowerMax vApp <10.0.0.2 Auth Bypass: CVE-2022-34363 May 2026

Dell Unisphere PowerMax vApp <10.0.0.2 Auth Bypass
CVE-2022-34363 Published on May 22, 2026

Dell Unisphere for PowerMax vApp version prior to 10.0.0.2, contains an authorization bypass vulnerability in the Unisphere for VMAX application running in vApp

Vulnerability Analysis

CVE-2022-34363 can be exploited with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, a high impact on integrity, and no impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

HIGH

Availability Impact:

NONE

Weakness Type

What is an AuthZ Vulnerability?

The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.

CVE-2022-34363 has been classified to as an AuthZ vulnerability or weakness.

Products Associated with CVE-2022-34363

Want to know whenever a new CVE is published for Dell products? stack.watch will email you.

Affected Versions

Before 10.0.0.5 EEM: 10.0.0.968 is affected.

Before 9.2.3.22 EEM: 9.2.4.26 is affected.

Before 9.2.3.12 is affected.

Dell Unisphere PowerMax vApp <10.0.0.2 Auth BypassCVE-2022-34363 Published on May 22, 2026

Vulnerability Analysis

Weakness Type

What is an AuthZ Vulnerability?

Products Associated with CVE-2022-34363

Affected Versions

Dell Unisphere PowerMax vApp <10.0.0.2 Auth Bypass
CVE-2022-34363 Published on May 22, 2026