CVSS 3.1 Score 4.3 of 10 (medium)


Published Nov 2, 2023
Updated: Nov 9, 2023
CWE ID 755
CWE ID 280


CVE-2023-43087 is a vulnerability found in Dell PowerScale OneFS versions 8.2.x, 9.0.0.x-9.5.0.x, which involves improper handling of insufficient permissions. This vulnerability can be exploited by a low privileged remote attacker, potentially leading to information disclosure. The affected products include various models such as tVhU6W, nFRQ4V, rYvpP9, tVhU6X, tw7U7s, rYvpP-, tVhU6V, ncySnc, tw7U7q, and tw7U7o. While the risk score is rated at 25 out of 100, with a base severity of MEDIUM and base score of 4.3 out of 10, the confidentiality impact is considered LOW. The exploitability score is 2.8 out of 10 with no required user interaction or integrity impact and an attack vector through the network. The CVE ID identifies this vulnerability as CWE-755 (Improper Handling of Exceptional Conditions).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-43087 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options