PT-2023-23795 · Dell · Powerpath
Published
2023-05-30
·
Updated
2023-06-06
·
CVE-2023-32448
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
PowerPath for Windows versions 7.0 through 7.2
Description
The issue allows a local user with access to the installation directory to retrieve the license key of the product. This license key can then be used to install and license PowerPath on different systems.
Recommendations
For PowerPath for Windows versions 7.0 through 7.2, consider restricting access to the installation directory to minimize the risk of exploitation.
Fix
Cleartext Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Powerpath