CVE-2022-29089 Information

Description

Dell Networking OS10 versions prior to October 2021 with Smart Fabric Services enabled contains an information disclosure vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by reverse engineering to retrieve sensitive information and access the REST API with admin privileges.

Reference

https://www.dell.com/support/kbdoc/en-us/000202971/dsa-2022-135-dell-emc-smartfabric-os10-security-update-for-multiple-security-vulnerabilities