CVE-2023-32449

Published Jun 22, 2023
Last updated a year ago
CVSS high 7.8
Overview

Description: Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. An attacker can trick a high privileged user to install a malicious binary by bypassing the existing cryptographic signature checks
Source: security_alert@emc.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH
Weaknesses

security_alert@emc.com: CWE-347
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_500t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B529671-71A1-428C-BC17-C8E002222FEA"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_1000t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FD5BE2B0-BB56-4E6C-8818-26910B23CE31"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_1200t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AB965674-7EBA-437E-A13B-39BC3F3FE139"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_3200t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E0A29ED1-5CE6-4D49-A079-7F4E6D782DE1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_3000t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "861B5BE7-159A-41FF-9658-D243051CAC88"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_5200t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F0FCFFD4-A989-4AF3-99DF-32AE2547D9C1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_5000t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2D5EE934-AD08-4C2B-B3EA-878975EE825E"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_7000t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "37E8CD6E-65F4-48A0-B796-93E4EE51BD06"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_9000t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D9BB1B88-C9C0-4B08-84C6-279C79E34CD3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:dell:powerstoret_os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A280B79D-02B3-434A-9186-D99F839FFE05",
            "versionEndExcluding": "3.5.0.0-2050321"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:dell:powerstore_9200t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F90EFCBC-F720-4426-8043-EB1489820C22"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
