← Back

CVE-2023-23689

nvd nist
Published: Feb 28, 2023Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Dell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. This may allow an unauthenticated network host to impair built-in hardware management functionality and trigger OneFS data protection mechanism causing a denial of service.

Affected (56)

Dell
8 products
A200 Firmware
A2000 Firmware
H400 Firmware
H500 Firmware
H600 Firmware
H5600 Firmware
F800 Firmware
F810 Firmware
Configuration A
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
A200 Firmware
Version 9.0.0.0
A200 Firmware
Version 9.1.0.0
A200 Firmware
Version 9.2.0.0
A200 Firmware
Version 9.2.1.0
A200 Firmware
Version 9.3.0.0
A200 Firmware
Version 9.4.0.0
A200 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
A200
All versions
Configuration B
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
A2000 Firmware
Version 9.0.0.0
A2000 Firmware
Version 9.1.0.0
A2000 Firmware
Version 9.2.0.0
A2000 Firmware
Version 9.2.1.0
A2000 Firmware
Version 9.3.0.0
A2000 Firmware
Version 9.4.0.0
A2000 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
A2000
All versions
Configuration C
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
H400 Firmware
Version 9.0.0.0
H400 Firmware
Version 9.1.0.0
H400 Firmware
Version 9.2.0.0
H400 Firmware
Version 9.2.1.0
H400 Firmware
Version 9.3.0.0
H400 Firmware
Version 9.4.0.0
H400 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
H400
All versions
Configuration D
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
H500 Firmware
Version 9.0.0.0
H500 Firmware
Version 9.1.0.0
H500 Firmware
Version 9.2.0.0
H500 Firmware
Version 9.2.1.0
H500 Firmware
Version 9.3.0.0
H500 Firmware
Version 9.4.0.0
H500 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
H500
All versions
Configuration E
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
H600 Firmware
Version 9.0.0.0
H600 Firmware
Version 9.1.0.0
H600 Firmware
Version 9.2.0.0
H600 Firmware
Version 9.2.1.0
H600 Firmware
Version 9.3.0.0
H600 Firmware
Version 9.4.0.0
H600 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
H600
All versions
Configuration F
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
H5600 Firmware
Version 9.0.0.0
H5600 Firmware
Version 9.1.0.0
H5600 Firmware
Version 9.2.0.0
H5600 Firmware
Version 9.2.1.0
H5600 Firmware
Version 9.3.0.0
H5600 Firmware
Version 9.4.0.0
H5600 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
H5600
All versions
Configuration G
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
F800 Firmware
Version 9.0.0.0
F800 Firmware
Version 9.1.0.0
F800 Firmware
Version 9.2.0.0
F800 Firmware
Version 9.2.1.0
F800 Firmware
Version 9.3.0.0
F800 Firmware
Version 9.4.0.0
F800 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
F800
All versions
Configuration H
7 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Dell
F810 Firmware
Version 9.0.0.0
F810 Firmware
Version 9.1.0.0
F810 Firmware
Version 9.2.0.0
F810 Firmware
Version 9.2.1.0
F810 Firmware
Version 9.3.0.0
F810 Firmware
Version 9.4.0.0
F810 Firmware
Version 9.5.0.0
Running on/withPlatform Versions
Dell
F810
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (2)

Source: security_alert@emc.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.