MEDIUM🇵🇱 Wersja polska

CVE-2023-45083

CVSS 4.2v3.1pub. 2023-12-05upd. 2024-11-21

An Improper Privilege Management vulnerability exists in HyperCloud that will impact the ability for a user to authenticate against the management plane. An authenticated admin-level user may be able to delete the "admin" or "serveradmin" users, which prevents authentication from subsequently succeeding. This issue affects HyperCloud versions 1.0 to any release before 2.1.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H
  • Softiron Hypercloud

    APP
    Softiron
    1.0 – 2.1.0 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-45084HIGH7.0ten sam produkt

An issue exists in SoftIron HyperCloud where drive caddy removal and reinsertion without a reboot may erroneou...

CVE-2023-45085LOW3.2ten sam produkt

An issue exists in SoftIron HyperCloud where compute nodes may come online immediately without following the c...