Cross-Site Request Forgery Vulnerability in PowerPath Management Appliance

Cross-Site Request Forgery Vulnerability in PowerPath Management Appliance

CVE-2022-34448 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability. An unauthenticated non-privileged user could potentially exploit the issue and perform any privileged state-changing actions.

Learn more about our User Device Pen Test.