PT-2023-23808 · Dell · Dell Powerprotect Cyber Recovery

Published

2023-06-14

Updated

2023-06-27

CVE-2023-32465

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell Power Protect Cyber Recovery (affected versions not specified)

Description The issue is an Authentication Bypass vulnerability that could allow an attacker to gain unauthorized admin access to the Cyber Recovery application, potentially leading to complete system takeover.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-644

Related Identifiers

CVE-2023-32465

Affected Products

Dell Powerprotect Cyber Recovery

PT-2023-23808 · Dell · Dell Powerprotect Cyber Recovery

CVE-2023-32465

Weakness Enumeration

Related Identifiers

Affected Products

References · 4