CVE-2023-43072

Name of the Vulnerable Software and Affected Versions Dell SmartFabric Storage Software versions 1.4 and earlier

Description The issue is related to an improper access control vulnerability in the Command Line Interface (CLI) of the software. A local, possibly unauthenticated attacker could exploit this vulnerability, potentially leading to the ability to execute arbitrary shell commands.

Recommendations For versions 1.4 and earlier, consider restricting access to the CLI to minimize the risk of exploitation until a patch is available. As a temporary workaround, consider disabling the CLI functionality until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.