What is CVE-2022-45102?

CVE-2022-45102 is a medium-severity vulnerability in Dell Data Protection Central, classified under Improper Neutralization of HTTP Headers for Scripting Syntax. CVSS score: 5.4/10. Published 2023-02-01.

How severe is CVE-2022-45102?

Medium severity. CVSS v3 base score is 5.4 out of 10.

Vulnerability in Dell Data Protection Central

CVE-2022-45102

Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary \u2018Host\u2019 header valu…

EPSS: 0.004 (63.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.4 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N.

Affected products

Dell Data Protection Central — versions 19.1

Weakness classification (CWE)

CWE-644 — Improper Neutralization of HTTP Headers for Scripting Syntax

References

www.dell.com/support/kbdoc/en-us/000206329/dsa-2022-348-dell-emc-data-protectio… (vendor-advisory)

Frequently asked questions

What is CVE-2022-45102?: CVE-2022-45102 is a medium-severity vulnerability in Dell Data Protection Central, classified under Improper Neutralization of HTTP Headers for Scripting Syntax. CVSS score: 5.4/10. Published 2023-02-01.
How severe is CVE-2022-45102?: Medium severity. CVSS v3 base score is 5.4 out of 10.