CVE-2023-4401

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Oct 5, 2023

Updated: Oct 6, 2023

CWE ID 79

Summary

CVE-2023-4401 is a critical vulnerability affecting Dell SmartFabric Storage Software version 1.4 and earlier. This issue allows a local or remote authenticated attacker to execute OS commands through the 'more' command in the software's CLI. Successful exploitation could result in the attacker gaining root-level access, compromising the entire system. Organizations using the affected software are urged to apply the latest patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/syXvLI
https://www.cve.org/CVERecord?id=CVE-2023-4401
https://nvd.nist.gov/vuln/detail/CVE-2023-4401

Back to Vulnerability Database

CVE-2023-4401

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations