CVE-2023-43071

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Oct 5, 2023

Updated: Oct 6, 2023

CWE ID 1236

Summary

CVE-2023-43071 is a vulnerability affecting Dell SmartFabric Storage Software version 1.4 and earlier. The issue involves potential HTML or CVS formula injection, which could escalate to cross-site scripting attacks in HTML pages within the software's graphical user interface. A remote, authenticated attacker could exploit these vulnerabilities and carry out injection-based attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell SmartFabric Storage Software

Affected Vendors

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssRoXE
https://www.cve.org/CVERecord?id=CVE-2023-43071
https://nvd.nist.gov/vuln/detail/CVE-2023-43071

Back to Vulnerability Database