{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-32464", "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "state": "PUBLISHED", "assignerShortName": "dell", "dateReserved": "2023-05-09T06:05:24.994Z", "datePublished": "2023-06-23T07:57:36.046Z", "dateUpdated": "2024-08-02T15:18:37.355Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Dell EMC VxRail Appliance", "vendor": "Dell", "versions": [{"status": "affected", "version": "7.0.x versions before 7.0.450"}]}], "datePublic": "2023-05-04T06:30:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim\u2019s data in transit.</span>\n\n"}], "value": "\nDell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim\u2019s data in transit.\n\n"}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-295", "description": "CWE-295: Improper Certificate Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell", "dateUpdated": "2023-06-23T07:57:36.046Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.dell.com/support/kbdoc/en-us/000213011/dsa-2023-071-dell-vxrail-security-update-for-multiple-third-party-component-vulnerabilities-7-0-450"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T15:18:37.355Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://www.dell.com/support/kbdoc/en-us/000213011/dsa-2023-071-dell-vxrail-security-update-for-multiple-third-party-component-vulnerabilities-7-0-450"}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_d560_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F934E7F4-FB3E-41BC-8CDA-916D45CF7FA3", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_d560:-:*:*:*:*:*:*:*", "matchCriteriaId": "0B547BDB-12A9-40AC-B4CA-040F413C5F05", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_d560f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8ACBCFDC-A6F5-46C7-AF7C-E7D20A90778D", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_d560f:-:*:*:*:*:*:*:*", "matchCriteriaId": "7755F292-5841-4751-AA28-2766B510F4B1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e460_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A363068-2EC7-4CCD-9D9D-DF0821B48F35", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e460:-:*:*:*:*:*:*:*", "matchCriteriaId": "B6D4A624-51DE-4845-81ED-7C724038C193", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D511F546-9185-41FD-85AB-90D581C49DF5", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560:-:*:*:*:*:*:*:*", "matchCriteriaId": "1CE64387-28EC-4486-8B12-B89E00FF5422", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "30F58B6F-6A34-4DD9-BABD-B27F98E8157E", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "33913EBB-9810-49BC-8060-F58A70323D31", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D89C932E-837B-4F16-9F5E-97DB55E85A31", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560f:-:*:*:*:*:*:*:*", "matchCriteriaId": "D3297C6B-2729-44F8-AEEE-399FC791314D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560f_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E4BBF424-41DB-4450-B175-CA97C422D7F7", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560f_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "2AE2145A-79D2-4460-94AC-41D3A56FD6D8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "924791A1-48EE-44E7-8F45-7156DD987C0A", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560n:-:*:*:*:*:*:*:*", "matchCriteriaId": "733EFA86-2D7E-40C4-BC2D-C8EC62BEDB40", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e560n_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AA72D54F-1742-42B4-AA3D-7D7E28880E96", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e560n_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "221890FF-A440-4C02-8DE2-F3D5F2E36E30", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e660_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6868128A-37FF-45A9-9571-5073E8DB1E55", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e660:-:*:*:*:*:*:*:*", "matchCriteriaId": "207FAAA1-9560-4B17-8777-06135B6F68A4", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e660f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6BAEDFB9-2F4C-49FD-BA30-B59E14E41EBF", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e660f:-:*:*:*:*:*:*:*", "matchCriteriaId": "35B3A233-689C-422F-98F4-DEC197F5E01F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e660n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7396834C-5E4F-4BFD-9FAF-8898265BB590", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e660n:-:*:*:*:*:*:*:*", "matchCriteriaId": "BED8FF48-215F-437E-BC0E-CDF5B0D02961", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e665_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "80351558-94C8-4FE8-8FCF-5DF38C1BB039", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e665:-:*:*:*:*:*:*:*", "matchCriteriaId": "4FFC45E9-D807-4184-8AEC-5C388E292D0F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e665f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3626597B-B502-4C72-8D59-E7C9EE126824", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e665f:-:*:*:*:*:*:*:*", "matchCriteriaId": "9F3C4556-A8F3-4AE4-8A6C-867BF069DBE7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_e665n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CFF3EF19-6CB5-40CB-A0C7-2306E1C083C1", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_e665n:-:*:*:*:*:*:*:*", "matchCriteriaId": "A820A4FE-3AF7-40AB-9E48-2A427BAEDD69", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_g560_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1FAE87A3-1D96-42E4-B73B-CEA7B0D9CA3B", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_g560:-:*:*:*:*:*:*:*", "matchCriteriaId": "8F017FC3-0062-4AD5-83CA-64F3D753C342", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_g560_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3C258E73-34A9-4312-B4AB-79CA3F19C201", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_g560_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "F6683017-7A03-4B5F-BF84-B54FEED93C37", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_g560f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "25FF5813-3729-40A6-B260-C9AE2ABF4F11", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_g560f:-:*:*:*:*:*:*:*", "matchCriteriaId": "ACAAF4CB-52A9-4859-AAD9-0B53608D3FFB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_g560f_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0593C021-FAF3-4486-8442-09D7D12D65D4", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_g560f_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "8ECA67AA-9316-4841-9602-649C6ACA0095", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p470_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "301C63DC-321C-4268-8C4B-4DF3BF5AF6B0", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p470:-:*:*:*:*:*:*:*", "matchCriteriaId": "6ACC8277-A159-49F4-81E0-C3A73455FFCB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p570_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1F5CA853-CECB-458F-826C-217874185A83", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p570:-:*:*:*:*:*:*:*", "matchCriteriaId": "F43E1BD6-A30F-4255-85FD-FA387B3C66AE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p570_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C0FCE319-94C3-4429-8FEF-EED92CE450A7", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p570_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "AFC1A83A-DEC7-4078-A8AA-C891DC386F93", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p570f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8214A020-E4A2-4FFD-88E7-CB47F6303F42", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p570f:-:*:*:*:*:*:*:*", "matchCriteriaId": "074180A7-BF66-4770-94E2-CA7C8C8AF7C8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p570f_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0E26748A-0328-4F3D-88F9-7A898BFBC2B2", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p570f_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "5C29E599-F792-4DE1-A689-36D97ABD08A1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p580n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F4E7C026-C6BF-4D16-B1FD-328A3D0C603C", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p580n:-:*:*:*:*:*:*:*", "matchCriteriaId": "93C9ABE5-CE51-4089-A90B-EB5195C13298", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p580n_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5C6C745F-739A-4E6E-9B88-ABEE2A6BEB15", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p580n_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "16C31369-A91C-435A-ABB1-568A3F7F59E0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p670f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4C9A7C11-1BB5-4B21-A364-A26135503139", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p670f:-:*:*:*:*:*:*:*", "matchCriteriaId": "F7E4817D-2161-4A9B-A31C-82AEDA3EE376", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p670n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FE42B95D-E61A-41C6-8E55-BCE12DC53D49", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p670n:-:*:*:*:*:*:*:*", "matchCriteriaId": "F4EA0A31-B29F-4FBF-8C84-3AA2517DF571", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p675f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4E507CAB-6B66-425E-B2E7-584FE7FD3ECE", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p675f:-:*:*:*:*:*:*:*", "matchCriteriaId": "2F5D18B7-9C39-4E54-9460-2494477DF883", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_p675n_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "95B1D9E1-5BFE-41C1-BF3B-AAD615D01556", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_p675n:-:*:*:*:*:*:*:*", "matchCriteriaId": "6CE44D31-6A33-424E-AABF-6A011EFC06F7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_s470_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A9A82C18-DB1E-4F5E-99FE-EB587A03FFA2", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_s470:-:*:*:*:*:*:*:*", "matchCriteriaId": "CE35EDFC-4608-42C1-A28F-5C2863BAA369", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_s570_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C4CAA10A-4386-44F7-A191-88003B4EE668", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_s570:-:*:*:*:*:*:*:*", "matchCriteriaId": "CFCB1C44-0865-499D-9845-DD726CE05C10", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_s570_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C9E30E89-8889-4194-8359-B41221EECB85", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_s570_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "FDDBE07F-24D2-4492-B70C-8423952F8AE1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_s670_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F938A266-6BB1-4F1D-8956-7416D0318C51", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_s670:-:*:*:*:*:*:*:*", "matchCriteriaId": "4A8C1317-89EB-4901-BB2F-A1D5CA43B571", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v470_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "07545205-078E-4724-B272-BE20BF4DD936", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v470:-:*:*:*:*:*:*:*", "matchCriteriaId": "6D91B986-191E-4852-A0E9-FDBB39D935DC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v570_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "444CEF28-002A-4F25-9FA2-2A633B54BFBB", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v570:-:*:*:*:*:*:*:*", "matchCriteriaId": "B462CA31-D81C-40C3-AC65-B21EF77C36EC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v570_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4D7D9207-2FE8-416F-BF08-C53C5C824182", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v570_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "4866F37C-56EB-4AFE-B4C9-E4F33B342F27", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v570f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "14146337-85FF-4AFA-934F-4B5A28C1718A", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v570f:-:*:*:*:*:*:*:*", "matchCriteriaId": "1C388426-FDAF-4954-9555-B0797C9DB085", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v570f_vcf_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DD682291-42C9-468A-B0DE-8CC6AF336AE4", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v570f_vcf:-:*:*:*:*:*:*:*", "matchCriteriaId": "D4A539AA-1837-4D2A-967D-55386FC1E14B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_v670f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0DE1B961-1EA7-4DC4-82AD-8D9E9B5E5492", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_v670f:-:*:*:*:*:*:*:*", "matchCriteriaId": "3D6EF50B-67E1-4373-AD6F-39D53C73C1D8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_vd-4000r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "935CC201-EFB2-478D-BA66-C49C4342CA49", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_vd-4000r:-:*:*:*:*:*:*:*", "matchCriteriaId": "D45082F1-56AD-4A99-A628-8FDF02424879", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_vd-4000w_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AFC8268F-FD4A-409D-828D-E49898A443C7", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_vd-4000w:-:*:*:*:*:*:*:*", "matchCriteriaId": "BB3AA886-1B65-4E89-BF68-E7FC5D3B7B65", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_vd-4000z_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "88AAC10D-C2E7-408C-961D-C484552B501A", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_vd-4000z:-:*:*:*:*:*:*:*", "matchCriteriaId": "BAD28E42-A52D-4CBF-A0BA-2206C8C7BD11", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_vd-4510c_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C73660C5-EB5D-4EAA-8161-2F17431850A8", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_vd-4510c:-:*:*:*:*:*:*:*", "matchCriteriaId": "0EFF07A7-FF4D-42B1-95F7-A9D7F8CDF39A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:dell:vxrail_vd-4520c_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3C5A1BC6-C7EF-44FD-BB7F-3E12956D3F33", "versionEndExcluding": "7.0.450", "versionStartIncluding": "7.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:dell:vxrail_vd-4520c:-:*:*:*:*:*:*:*", "matchCriteriaId": "93C59E3C-CCD3-4E72-9E52-6B4D8FBEEFBB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "\nDell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim\u2019s data in transit.\n\n"}], "id": "CVE-2023-32464", "lastModified": "2023-07-05T18:31:27.907", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 0.7, "impactScore": 2.5, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 2.7, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 1.4, "source": "security_alert@emc.com", "type": "Secondary"}]}, "published": "2023-06-23T08:15:09.400", "references": [{"source": "security_alert@emc.com", "tags": ["Vendor Advisory"], "url": "https://www.dell.com/support/kbdoc/en-us/000213011/dsa-2023-071-dell-vxrail-security-update-for-multiple-third-party-component-vulnerabilities-7-0-450"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-295"}], "source": "security_alert@emc.com", "type": "Primary"}]}

{}