What is CVE-2022-22553?

CVE-2022-22553 is a high-severity vulnerability in Dell Appsync, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 8.1/10. Published 2022-01-21.

How severe is CVE-2022-22553?

High severity. CVSS v3 base score is 8.1 out of 10.

Vulnerability in Dell Appsync

CVE-2022-22553

Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability that can be exploited from UI and CLI. An adjacent unauthenticated attacker could potentially exploit this vulnerabilit…

EPSS: 0.005 (64.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Dell Appsync — versions unspecified

Weakness classification (CWE)

CWE-307 — Improper Restriction of Excessive Authentication Attempts

References

www.dell.com/support/kbdoc/000195377 (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-22553?: CVE-2022-22553 is a high-severity vulnerability in Dell Appsync, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 8.1/10. Published 2022-01-21.
How severe is CVE-2022-22553?: High severity. CVSS v3 base score is 8.1 out of 10.