CVE-2022-26870
Description
Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability under specific configuration. An attacker would gain unauthorized access upon successful exploit.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
CVE-2022-26870 is an authentication bypass in Dell PowerStore 2.1.0.x that lets a remote unauthenticated attacker gain unauthorized access under specific configurations.
Vulnerability
CVE-2022-26870 is an authentication bypass vulnerability in Dell PowerStore versions 2.1.0.x [1]. Under a specific configuration, a remote unauthenticated attacker can bypass authentication mechanisms [1]. The affected versions are explicitly 2.1.0.x [1].
Exploitation
An attacker does not need any prior authentication or local access; the vulnerability is exploitable from the network [1]. The specific set of configuration conditions required is not detailed in the reference, but the advisory states that it is exploitable under "specific configuration" [1]. No user interaction or privilege escalation path is described.
Impact
Successful exploitation grants the attacker unauthorized access to the system [1]. The impact is potentially critical, as the attacker gains access without authentication, which could lead to full compromise of the affected PowerStore appliance, including confidentiality, integrity, and availability impacts [1].
Mitigation
The vulnerability is addressed in PowerStore version 2.1.1.0 and later [1]. Dell recommends upgrading to a fixed version as soon as possible [1]. No workarounds are provided in the advisory.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: 2.1.0.x
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.