CVE-2022-32481

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Cyber Recovery versions prior to 19.11

Description The issue allows a lower-privileged authenticated user to escalate privileges to root, leading to complete system takeover by chaining docker commands on virtual appliance deployments.

Recommendations For versions prior to 19.11, update to version 19.11 or later to resolve the issue. As a temporary workaround, consider restricting access to docker commands for lower-privileged users until a patch is applied.