Lucene search

[email protected]CVE-2023-32463

HistoryJun 23, 2023 - 8:15 a.m.

CVE-2023-32463

2023-06-2308:15:09

CWE-20

[email protected]

web.nvd.nist.gov

dell

vxrail

version 8.0.100

denial of service

dos

vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.3%

JSON

Dell VxRail, version(s) 8.0.100 and earlier contain a denial-of-service vulnerability in the upgrade functionality. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to degraded performance and system malfunction.

Affected configurations

NVD

Node

dellvxrail_d560_firmwareRange<8.0.100

AND

dellvxrail_d560Match-

Node

dellvxrail_d560f_firmwareRange<8.0.100

AND

dellvxrail_d560fMatch-

Node

dellvxrail_e460_firmwareRange<8.0.100

AND

dellvxrail_e460Match-

Node

dellvxrail_e560_firmwareRange<8.0.100

AND

dellvxrail_e560Match-

Node

dellvxrail_e560_vcf_firmwareRange<8.0.100

AND

dellvxrail_e560_vcfMatch-

Node

dellvxrail_e560f_firmwareRange<8.0.100

AND

dellvxrail_e560fMatch-

Node

dellvxrail_e560f_vcf_firmwareRange<8.0.100

AND

dellvxrail_e560f_vcfMatch-

Node

dellvxrail_e560n_firmwareRange<8.0.100

AND

dellvxrail_e560nMatch-

Node

dellvxrail_e560n_vcf_firmwareRange<8.0.100

AND

dellvxrail_e560n_vcfMatch-

Node

dellvxrail_e660_firmwareRange<8.0.100

AND

dellvxrail_e660Match-

Node

dellvxrail_e660f_firmwareRange<8.0.100

AND

dellvxrail_e660fMatch-

Node

dellvxrail_e660n_firmwareRange<8.0.100

AND

dellvxrail_e660nMatch-

Node

dellvxrail_e665_firmwareRange<8.0.100

AND

dellvxrail_e665Match-

Node

dellvxrail_e665f_firmwareRange<8.0.100

AND

dellvxrail_e665fMatch-

Node

dellvxrail_e665n_firmwareRange<8.0.100

AND

dellvxrail_e665nMatch-

Node

dellvxrail_g560_firmwareRange<8.0.100

AND

dellvxrail_g560Match-

Node

dellvxrail_g560_vcf_firmwareRange<8.0.100

AND

dellvxrail_g560_vcfMatch-

Node

dellvxrail_g560f_firmwareRange<8.0.100

AND

dellvxrail_g560fMatch-

Node

dellvxrail_g560f_vcf_firmwareRange<8.0.100

AND

dellvxrail_g560f_vcfMatch-

Node

dellvxrail_p470_firmwareRange<8.0.100

AND

dellvxrail_p470Match-

Node

dellvxrail_p570_firmwareRange<8.0.100

AND

dellvxrail_p570Match-

Node

dellvxrail_p570_vcf_firmwareRange<8.0.100

AND

dellvxrail_p570_vcfMatch-

Node

dellvxrail_p570f_firmwareRange<8.0.100

AND

dellvxrail_p570fMatch-

Node

dellvxrail_p570f_vcf_firmwareRange<8.0.100

AND

dellvxrail_p570f_vcfMatch-

Node

dellvxrail_p580n_firmwareRange<8.0.100

AND

dellvxrail_p580nMatch-

Node

dellvxrail_p580n_vcf_firmwareRange<8.0.100

AND

dellvxrail_p580n_vcfMatch-

Node

dellvxrail_p670f_firmwareRange<8.0.100

AND

dellvxrail_p670fMatch-

Node

dellvxrail_p670n_firmwareRange<8.0.100

AND

dellvxrail_p670nMatch-

Node

dellvxrail_p675f_firmwareRange<8.0.100

AND

dellvxrail_p675fMatch-

Node

dellvxrail_p675n_firmwareRange<8.0.100

AND

dellvxrail_p675nMatch-

Node

dellvxrail_s470_firmwareRange<8.0.100

AND

dellvxrail_s470Match-

Node

dellvxrail_s570_firmwareRange<8.0.100

AND

dellvxrail_s570Match-

Node

dellvxrail_s570_vcf_firmwareRange<8.0.100

AND

dellvxrail_s570_vcfMatch-

Node

dellvxrail_s670_firmwareRange<8.0.100

AND

dellvxrail_s670Match-

Node

dellvxrail_v470_firmwareRange<8.0.100

AND

dellvxrail_v470Match-

Node

dellvxrail_v570_firmwareRange<8.0.100

AND

dellvxrail_v570Match-

Node

dellvxrail_v570_vcf_firmwareRange<8.0.100

AND

dellvxrail_v570_vcfMatch-

Node

dellvxrail_v570f_firmwareRange<8.0.100

AND

dellvxrail_v570fMatch-

Node

dellvxrail_v570f_vcf_firmwareRange<8.0.100

AND

dellvxrail_v570f_vcfMatch-

Node

dellvxrail_v670f_firmwareRange<8.0.100

AND

dellvxrail_v670fMatch-

Node

dellvxrail_vd-4000r_firmwareRange<8.0.100

AND

dellvxrail_vd-4000rMatch-

Node

dellvxrail_vd-4000w_firmwareRange<8.0.100

AND

dellvxrail_vd-4000wMatch-

Node

dellvxrail_vd-4000z_firmwareRange<8.0.100

AND

dellvxrail_vd-4000zMatch-

Node

dellvxrail_vd-4510c_firmwareRange<8.0.100

AND

dellvxrail_vd-4510cMatch-

Node

dellvxrail_vd-4520c_firmwareRange<8.0.100

AND

dellvxrail_vd-4520cMatch-

CPENameOperatorVersion
dell:vxrail_d560_firmwaredell vxrail d560 firmwarelt8.0.100

CPE	Name	Operator	Version
dell:vxrail_d560_firmware	dell vxrail d560 firmware	lt	8.0.100

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Dell EMC VxRail Appliance",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "Version Prior to 8.0.100"
      }
    ]
  }
]

References

www.dell.com/support/kbdoc/en-us/000214659/dsa-2023-200-security-update-for-dell-vxrail-for-multiple-third-party-component-vulnerabilities

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.3%

JSON

Related for CVE-2023-32463

cvelist1 nvd1 prion1