What is CVE-2023-32464?

CVE-2023-32464 is a low-severity vulnerability in Dell Emc Vxrail Appliance, classified under Improper Certificate Validation. CVSS score: 2.7/10. Published 2023-06-23.

How severe is CVE-2023-32464?

Low severity. CVSS v3 base score is 2.7 out of 10.

Vulnerability in Dell Emc Vxrail Appliance

CVE-2023-32464

Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. A high privileged remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted…

Vulnerability class: Improper Certificate Validation

EPSS: 0.002 (8.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 2.7 (Low). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N.

Affected products

Dell Emc Vxrail Appliance — versions 7.0.x versions before 7.0.450
Dell Vxrail_d560
Dell Vxrail_d560f
Dell Vxrail_d560f_firmware
Dell Vxrail_d560_firmware
Dell Vxrail_e460
Dell Vxrail_e460_firmware
Dell Vxrail_e560
Dell Vxrail_e560f
Dell Vxrail_e560f_firmware

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

References

security_alert@emc.com (vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2023-32464?: CVE-2023-32464 is a low-severity vulnerability in Dell Emc Vxrail Appliance, classified under Improper Certificate Validation. CVSS score: 2.7/10. Published 2023-06-23.
How severe is CVE-2023-32464?: Low severity. CVSS v3 base score is 2.7 out of 10.