CVE-2023-48665

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Dec 14, 2023

Updated: Dec 19, 2023

CWE ID 78

Summary

CVE-2023-48665 is a command injection vulnerability affecting Dell vApp Manager versions prior to 9.2.4.x. Malicious users with high privileges can exploit this vulnerability, allowing them to inject and execute arbitrary OS commands on the targeted system. This issue poses a significant security risk as it can lead to unauthorized system access and potential data breaches. Upgrading to the latest version of Dell vApp Manager is strongly recommended to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tci435
https://www.cve.org/CVERecord?id=CVE-2023-48665
https://nvd.nist.gov/vuln/detail/CVE-2023-48665

Back to Vulnerability Database

CVE-2023-48665

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations