Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-32468: DSA-2023-254: Security Update for Dell ECS Streamer sensitive data exposure Vulnerability.

Dell ECS Streamer, versions prior to 2.0.7.1, contain an insertion of sensitive information in log files vulnerability. A remote malicious high-privileged user could potentially exploit this vulnerability leading to exposure of this sensitive data.

CVE
Open in Source
#vulnerability#dell

Vaikutus

High

Tiedot

Proprietary Code CVEs

Description

CVSS Base Score

CVSS Vector String

CVE-2023-32468

Dell ECS Streamer, versions prior to 2.0.7.1, contain an insertion of sensitive information in log files vulnerability. A remote malicious high-privileged user could potentially exploit this vulnerability leading to exposure of this sensitive data.

5.8

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

Proprietary Code CVEs

Description

CVSS Base Score

CVSS Vector String

CVE-2023-32468

Dell ECS Streamer, versions prior to 2.0.7.1, contain an insertion of sensitive information in log files vulnerability. A remote malicious high-privileged user could potentially exploit this vulnerability leading to exposure of this sensitive data.

5.8

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen

CVEs Addressed

Product

Affected Versions

Remediated Versions

Link

CVE-2023-32468

Dell ECS Streamer

All versions prior to 2.0.7.1

2.0.7.1

https://dl.dell.com/downloads/R8WRK_Veritas-Enterprise-Vault-Streamer-Driver-for-ECS-2.0.7.1.exe

CVEs Addressed

Product

Affected Versions

Remediated Versions

Link

CVE-2023-32468

Dell ECS Streamer

All versions prior to 2.0.7.1

2.0.7.1

https://dl.dell.com/downloads/R8WRK_Veritas-Enterprise-Vault-Streamer-Driver-for-ECS-2.0.7.1.exe

Keinoja ongelman kiertämiseen tai lieventämiseen

None

Versiohistoria

Revision

Date

Description

1.0

2023-07-25

Initial Release

Asiaan liittyvät tiedot

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

ECS Appliance, ECS Appliance Software with Encryption, ECS Appliance Software without Encryption

25 heinäk. 2023

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE