CVE-2023-39250
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Aug 16, 2023
Updated: Nov 3, 2023
CWE ID 540
CWE ID 668
Summary
CVE-2023-39250 is a vulnerability affecting Dell Storage Integration Tools for VMware (DSITV), Dell Storage vSphere Client Plugin (DSVCP), and Replay Manager for VMware (RMSV) prior to version 6.1.1, 3.1.1, and 3.1.2, respectively. This issue involves an information disclosure weakness, allowing a local, low-privileged attacker to retrieve an encryption key. While the key's impact is not fully understood at this time, it could potentially aid further attacks. Users are advised to update their software as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Dell Technologies, Inc.