HIGH✓ PATCH🇬🇧 English

CVE-2023-32465

CVSS 8.8v3.1pub. 2023-06-14upd. 2024-11-21

Dell Power Protect Cyber Recovery, contains an Authentication Bypass vulnerability. An attacker could potentially exploit this vulnerability, leading to unauthorized admin access to the Cyber Recovery application. Exploitation may lead to complete system takeover by an attacker.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Dell Powerprotect Cyber Recovery

    APP
    Dell
    19.4 – 19.13.0.2
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Auth Bypass
CWE
Referencje

Powiązane podatności

CVE-2022-34372CRITICAL9.8ten sam produkt

Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication bypass vulnerability. A r...

CVE-2022-32481HIGH7.8ten sam produkt

Dell PowerProtect Cyber Recovery, versions prior to 19.11, contain a privilege escalation vulnerability on vir...

CVE-2025-26335MEDIUM5.8ten sam produkt

Dell PowerProtect Cyber Recovery, versions prior to 19.18.0.2, contains an Insertion of Sensitive Information ...

CVE-2026-22769CRITICAL10.0⚠ KEVPL ✓ten sam vendor

Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)

CVE-2026-41120CRITICAL9.8PL ✓ten sam vendor

RCE w Dell Wyse Management Suite — akceptacja niezaufanych danych