CVE-2023-28078

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Feb 15, 2024

CWE ID 923

Summary

CVE-2023-28078 is a high severity vulnerability affecting Dell OS10 Networking Switches running version 10.5.2.x and above. When VLT (Virtual LAN Trunking) is configured, the switches contain a zeroMQ issue. An unauthenticated remote attacker can potentially exploit this flaw, resulting in information disclosure and a Denial of Service risk due to an excessive number of requests. Sensitive data may be exposed, making it crucial for customers to upgrade their switches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sXKw5f
https://www.cve.org/CVERecord?id=CVE-2023-28078
https://nvd.nist.gov/vuln/detail/CVE-2023-28078

Back to Vulnerability Database

CVE-2023-28078

CVSS 3.1 Score 9.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations