Skip to content

CVE-2023-32478 | PowerStore

Dell PowerStore versions prior to 3.5.0.1 contain an insertion of sensitive information into log file vulnerability. A high privileged malicious user could potentially exploit this vulnerability, leading to sensitive information disclosure. .This CVE has a CVSS3.1 score of 9 and a Base Severity of CRITICAL.

InfoDetails
CVE IDCVE-2023-32478
CVE StatePUBLISHED
BaseScore9
BaseSeverityCRITICAL
VectorStringCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:H
VersionNA

References for CVE-2023-32478 :
https://www.dell.com/support/kbdoc/en-us/000215171/dsa-2023-173-dell-powerstore-family-security-update-for-multiple-vulnerabilities

Metric TypeMetric Score
AttackVector(AV)NETWORK
AttackComplexity(AC)LOW
PrivilegesRequired(PR)HIGH
UserInteraction(UI)NONE
Scope(S)CHANGED
Confidentiality(C)LOW
Availability(A)HIGH
Integrity(I)HIGH
Tags: