Lucene search
HistoryNov 16, 2023 - 8:15 a.m.
CVE-2023-44296
dell elab-navigator
version 3.1.9
hard-coded credential vulnerability
unauthorized access
sensitive data
compromise
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
5.1%
Dell ELab-Navigator, version 3.1.9 contains a hard-coded credential vulnerability. A local attacker could potentially exploit this vulnerability, leading to unauthorized access to sensitive data. Successful exploitation may result in the compromise of confidential user information.
Affected configurations
Node
delle-lab_navigatorMatch3.1.8
ORdelle-lab_navigatorMatch3.1.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dell | e-lab_navigator | 3.1.8 | cpe:2.3:a:dell:e-lab_navigator:3.1.8:*:*:*:*:*:*:* |
| dell | e-lab_navigator | 3.1.9 | cpe:2.3:a:dell:e-lab_navigator:3.1.9:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2023-44296
2023-11-16 08:15:31
vulnrichment
vulnrichment
CVE-2023-44296
2023-11-16 07:46:18
prion
prion
Hardcoded credentials
2023-11-16 08:15:00
cvelist
cvelist
CVE-2023-44296
2023-11-16 07:46:18
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2023-44296