Security Advisory

CVE-2022-24414

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-26 15:20:17

Last updated 2024-09-17 00:55:43

Assigner dell

State PUBLISHED

Description

Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks.

← Browse all CVEs View on cve.org ↗