CVE-2023-39244
CVSS 3.1 Score 7.3 of 10 (high)
Details
Summary
CVE-2023-39244 is an information disclosure vulnerability found in DELL ESI (Enterprise Storage Integrator) for SAP LAMA version 10.0. This vulnerability affects the EHAC component and can be exploited by a remote unauthenticated attacker who eavesdrops on network traffic to obtain admin level credentials. The risk score for this vulnerability is 25, with a base severity of HIGH and a base score of 7.3. The exploitability score is 3.9, and the impact score is 3.4. The CVE ID name specifies that this vulnerability was modified on February 20, 2024, and the source of the information is [email protected]. A potential danger posed by this vulnerability is unauthorized access to sensitive data within an organization's system if it remains unremedied.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions