Unknown
CVE-2023-32464
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2023-32464
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim’s traffic to view or modify a victim’s data in transit.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- vxrail d560 firmware,
- vxrail d560f firmware,
- vxrail e460 firmware,
- vxrail e560 firmware,
- vxrail e560 vcf firmware,
- vxrail e560f firmware,
- vxrail e560f vcf firmware,
- vxrail e560n firmware,
- vxrail e560n vcf firmware,
- vxrail e660 firmware,
- vxrail e660f firmware,
- vxrail e660n firmware,
- vxrail e665 firmware,
- vxrail e665f firmware,
- vxrail e665n firmware,
- vxrail g560 firmware,
- vxrail g560 vcf firmware,
- vxrail g560f firmware,
- vxrail g560f vcf firmware,
- vxrail p470 firmware,
- vxrail p570 firmware,
- vxrail p570 vcf firmware,
- vxrail p570f firmware,
- vxrail p570f vcf firmware,
- vxrail p580n firmware,
- vxrail p580n vcf firmware,
- vxrail p670f firmware,
- vxrail p670n firmware,
- vxrail p675f firmware,
- vxrail p675n firmware,
- vxrail s470 firmware,
- vxrail s570 firmware,
- vxrail s570 vcf firmware,
- vxrail s670 firmware,
- vxrail v470 firmware,
- vxrail v570 firmware,
- vxrail v570 vcf firmware,
- vxrail v570f firmware,
- vxrail v570f vcf firmware,
- vxrail v670f firmware,
- vxrail vd-4000r firmware,
- vxrail vd-4000w firmware,
- vxrail vd-4000z firmware,
- vxrail vd-4510c firmware,
- vxrail vd-4520c firmware
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
