CVE-2023-39250

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 16, 2023
Updated: Nov 3, 2023
CWE ID 540
CWE ID 668

Summary

CVE-2023-39250 is a vulnerability affecting Dell Storage Integration Tools for VMware (DSITV), Dell Storage vSphere Client Plugin (DSVCP), and Replay Manager for VMware (RMSV) prior to version 6.1.1, 3.1.1, and 3.1.2, respectively. This issue involves an information disclosure weakness, allowing a local, low-privileged attacker to retrieve an encryption key. While the key's impact is not fully understood at this time, it could potentially aid further attacks. Users are advised to update their software as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share