Information Disclosure Vulnerability in Dell Networking OS10 with Smart Fabric Services

Information Disclosure Vulnerability in Dell Networking OS10 with Smart Fabric Services

CVE-2022-29089 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Dell Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an information disclosure vulnerability. A remote, unauthenticated attacker could potentially exploit this vulnerability by reverse engineering to retrieve sensitive information and access the REST API with admin privileges.

Learn more about our Api Penetration Testing.