CVE-2023-43068

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 5, 2023

Updated: Oct 6, 2023

CWE ID 78

Summary

CVE-2023-43068 is a vulnerability affecting Dell SmartFabric Storage Software version 1.4 and earlier. This issue allows an authenticated remote attacker to perform OS Command Injection through the restricted shell in SSH. Exploitation of this vulnerability could result in the execution of arbitrary commands, potentially leading to serious security implications. Organizations using the affected software version are advised to apply the necessary patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell SmartFabric Storage Software

Affected Vendors

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssR9-B
https://www.cve.org/CVERecord?id=CVE-2023-43068
https://nvd.nist.gov/vuln/detail/CVE-2023-43068

Back to Vulnerability Database