Dell Container Storage Modules 1.2 contains an Improper Limitation of a Pathname to a Restricted Directory in goiscsi and gobrick libraries which could lead to OS command injection. A remote unauthenticated attacker could exploit this vulnerability leading to unintentional access to path outside of restricted directory.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 16 May 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2025-05-16T13:47:43.100Z

Reserved: 2022-06-23T00:00:00.000Z

Link: CVE-2022-34426

cve-icon Vulnrichment

Updated: 2024-08-03T09:07:16.159Z

cve-icon NVD

Status : Modified

Published: 2022-10-11T17:15:10.977

Modified: 2024-11-21T07:09:32.330

Link: CVE-2022-34426

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.