CVE-2023-32464
CVSS V2 None
CVSS V3 None
Description
Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim’s data in transit.
Overview
- CVE ID
- CVE-2023-32464
- Assigner
- dell
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-06-23T07:57:36.046Z
- Last Modified Date
- 2023-06-23T07:57:36.046Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.dell.com/support/kbdoc/en-us/000213011/dsa-2023-071-dell-vxrail-security-update-for-multiple-third-party-component-vulnerabilities-7-0-450 | vendor-advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-32464 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32464 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 11:10:56 | Added to TrackCVE |