CVE-2019-3710

Name of the Vulnerable Software and Affected Versions Dell EMC Networking OS10 versions prior to 10.4.3

Description The issue is related to a cryptographic key vulnerability. This vulnerability arises due to an underlying application utilizing undocumented, pre-installed X.509v3 key/certificate pairs. An unauthenticated remote attacker who is aware of the default keys may potentially intercept communications or operate the system with elevated privileges.

Recommendations For Dell EMC Networking OS10 versions prior to 10.4.3, update to version 10.4.3 or later to resolve the issue.