exploitDog

CVE-2023-25536

Опубликовано: 02 мар. 2023

Источник: nvd

CVSS3: 6.7

EPSS Низкий

Описание

Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. A malicious authenticated local user could potentially exploit this vulnerability in certificate management, leading to a potential system takeover.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000209895/dell-emc-powerscale-onefs-security-updates-for-multiple-security
Patch
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000209895/dell-emc-powerscale-onefs-security-updates-for-multiple-security
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*:*

Версия от 9.4.0.0 (включая) до 9.4.0.11 (включая)

EPSS

Процентиль: 15%

0.00048

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-200

CWE-668

Связанные уязвимости

GHSA-95v8-43qv-gr4x

CVSS3: 6.7

github

почти 3 года назад

Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. A malicious authenticated local user could potentially exploit this vulnerability in certificate management, leading to a potential system takeover.

EPSS

Процентиль: 15%

0.00048

Низкий

6.7 Medium

CVSS3

Дефекты

CWE-200

CWE-668