CVE-2023-25934

Name of the Vulnerable Software and Affected Versions DELL ECS versions prior to 3.8.0.2

Description The issue is related to an improper verification of cryptographic signature, which could be exploited by a network attacker to modify the body data of a request. This could potentially occur if the attacker has the ability to intercept the request.

Recommendations For versions prior to 3.8.0.2, update to version 3.8.0.2 or later to resolve the issue. As a temporary workaround, consider implementing additional network security measures to minimize the risk of request interception.