CRITICAL✓ PATCH🇬🇧 English

CVE-2023-32478

CVSS 9.0v3.1pub. 2023-07-21upd. 2024-11-21

Dell PowerStore versions prior to 3.5.0.1 contain an insertion of sensitive information into log file vulnerability. A high privileged malicious user could potentially exploit this vulnerability, leading to sensitive information disclosure.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H
  • Dell Powerstoreos

    OS
    Dell
    < 3.5.0.1
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2022-26869CRITICAL9.8ten sam produkt

Dell PowerStore versions 2.0.0.x, 2.0.1.x and 2.1.0.x contains an open port vulnerability. A remote unauthenti...

CVE-2024-51532HIGH7.1ten sam produkt

Dell PowerStore contains an Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')...

CVE-2022-26870HIGH7.0ten sam produkt

Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. A remote unauthenticated atta...

CVE-2022-22557HIGH7.5ten sam produkt

PowerStore contains Plain-Text Password Storage Vulnerability in PowerStore X & T environments running version...

CVE-2026-28265MEDIUM4.4ten sam produkt

PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged attacker with local ...