A remote unauthenticated attacker could potentially exploit this vulnerability, leading to processing of unintended server operations. This candidate is a reservation duplicate of CVE-2022-31159. All CVE users should reference the same candidate as the previous candidate. The vulnerability is currently being investigated by DHS/US-CERT’s National Vulnerability Database. It is possible that a remote attacker could exploit the vulnerability leading to password brute-forcing. Account takeover is possible if weak passwords are used in the PowerStore Manager.”]
Source: https://www.darkreading.com/optimizing-online-defenses-through-crowdsourcing/v/d-id/1329575