MEDIUM🇬🇧 English

CVE-2023-45083

CVSS 4.2v3.1pub. 2023-12-05upd. 2024-11-21

An Improper Privilege Management vulnerability exists in HyperCloud that will impact the ability for a user to authenticate against the management plane. An authenticated admin-level user may be able to delete the "admin" or "serveradmin" users, which prevents authentication from subsequently succeeding. This issue affects HyperCloud versions 1.0 to any release before 2.1.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H
  • Softiron Hypercloud

    APP
    Softiron
    1.0 – 2.1.0 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-45084HIGH7.0ten sam produkt

An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot may erroneou...

CVE-2023-45085LOW3.2ten sam produkt

An issue exists in SoftIron HyperCloud where compute nodes may come online immediately without following the c...