CVE-2023-39244

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Feb 15, 2024

Updated: Feb 20, 2024

CWE ID 284

Summary

CVE-2023-39244 is a newly disclosed vulnerability affecting DELL ESI (Enterprise Storage Integrator) for SAP LAMA version 10.0. This issue involves an information disclosure flaw within the EHAC component. An unauthenticated remote attacker can exploit this vulnerability by intercepting network traffic. Potentially, they could gain access to admin-level credentials, posing a significant security risk. It is recommended that affected organizations install the latest patches to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sHwzjP
https://www.cve.org/CVERecord?id=CVE-2023-39244
https://nvd.nist.gov/vuln/detail/CVE-2023-39244

Back to Vulnerability Database

CVE-2023-39244

CVSS 3.1 Score 7.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations