cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-32462,https://securityvulnerability.io/vulnerability/CVE-2023-32462,Dell OS10 Networking Switches Vulnerable to Command Injection Attacks,"Dell OS10 Networking Switches running version 10.5.2.x and higher are susceptible to an OS command injection vulnerability that arises during remote user authentication processes. This vulnerability can be exploited by a remote unauthenticated attacker, enabling the execution of arbitrary operating system commands. Such exploitation could lead to unauthorized access or control over the system, posing significant risks to network integrity and data security. Dell advises users to upgrade their systems promptly to mitigate potential threats posed by this vulnerability.",Dell,Dell SmartFabric OS10,9.8,CRITICAL,0.0010499999625608325,false,,false,false,false,,,false,false,,2024-02-15T12:42:26.610Z,0
CVE-2023-28078,https://securityvulnerability.io/vulnerability/CVE-2023-28078,Dell OS10 Switches Vulnerability: Information Disclosure and Denial of Service Threats,"A vulnerability exists in Dell OS10 Networking Switches, specifically in versions 10.5.2.x and above, related to the zeroMQ messaging library when Virtual Link Trunking (VLT) is configured. This vulnerability allows remote unauthenticated attackers to exploit the system under certain conditions. By sending a large number of requests to the switch, attackers can potentially access sensitive information and might induce a Denial of Service, compromising the functionality of the network device. Dell has advised users to upgrade their systems promptly to mitigate this risk.",Dell,Dell Smartfabric Os10,9.1,CRITICAL,0.0010400000028312206,false,,false,false,false,,,false,false,,2024-02-15T12:35:00.259Z,0