7.5

CVE-2023-23689

Dell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. This may allow an unauthenticated network host to impair built-in hardware management functionality and trigger OneFS data protection mechanism causing a denial of service.

Data is provided by the National Vulnerability Database (NVD)
DellA200 Firmware Version9.0.0.0
   DellA200 Version-
DellA200 Firmware Version9.1.0.0
   DellA200 Version-
DellA200 Firmware Version9.2.0.0
   DellA200 Version-
DellA200 Firmware Version9.2.1.0
   DellA200 Version-
DellA200 Firmware Version9.3.0.0
   DellA200 Version-
DellA200 Firmware Version9.4.0.0
   DellA200 Version-
DellA200 Firmware Version9.5.0.0
   DellA200 Version-
DellA2000 Firmware Version9.0.0.0
   DellA2000 Version-
DellA2000 Firmware Version9.1.0.0
   DellA2000 Version-
DellA2000 Firmware Version9.2.0.0
   DellA2000 Version-
DellA2000 Firmware Version9.2.1.0
   DellA2000 Version-
DellA2000 Firmware Version9.3.0.0
   DellA2000 Version-
DellA2000 Firmware Version9.4.0.0
   DellA2000 Version-
DellA2000 Firmware Version9.5.0.0
   DellA2000 Version-
DellH400 Firmware Version9.0.0.0
   DellH400 Version-
DellH400 Firmware Version9.1.0.0
   DellH400 Version-
DellH400 Firmware Version9.2.0.0
   DellH400 Version-
DellH400 Firmware Version9.2.1.0
   DellH400 Version-
DellH400 Firmware Version9.3.0.0
   DellH400 Version-
DellH400 Firmware Version9.4.0.0
   DellH400 Version-
DellH400 Firmware Version9.5.0.0
   DellH400 Version-
DellH500 Firmware Version9.0.0.0
   DellH500 Version-
DellH500 Firmware Version9.1.0.0
   DellH500 Version-
DellH500 Firmware Version9.2.0.0
   DellH500 Version-
DellH500 Firmware Version9.2.1.0
   DellH500 Version-
DellH500 Firmware Version9.3.0.0
   DellH500 Version-
DellH500 Firmware Version9.4.0.0
   DellH500 Version-
DellH500 Firmware Version9.5.0.0
   DellH500 Version-
DellH600 Firmware Version9.0.0.0
   DellH600 Version-
DellH600 Firmware Version9.1.0.0
   DellH600 Version-
DellH600 Firmware Version9.2.0.0
   DellH600 Version-
DellH600 Firmware Version9.2.1.0
   DellH600 Version-
DellH600 Firmware Version9.3.0.0
   DellH600 Version-
DellH600 Firmware Version9.4.0.0
   DellH600 Version-
DellH600 Firmware Version9.5.0.0
   DellH600 Version-
DellH5600 Firmware Version9.0.0.0
   DellH5600 Version-
DellH5600 Firmware Version9.1.0.0
   DellH5600 Version-
DellH5600 Firmware Version9.2.0.0
   DellH5600 Version-
DellH5600 Firmware Version9.2.1.0
   DellH5600 Version-
DellH5600 Firmware Version9.3.0.0
   DellH5600 Version-
DellH5600 Firmware Version9.4.0.0
   DellH5600 Version-
DellH5600 Firmware Version9.5.0.0
   DellH5600 Version-
DellF800 Firmware Version9.0.0.0
   DellF800 Version-
DellF800 Firmware Version9.1.0.0
   DellF800 Version-
DellF800 Firmware Version9.2.0.0
   DellF800 Version-
DellF800 Firmware Version9.2.1.0
   DellF800 Version-
DellF800 Firmware Version9.3.0.0
   DellF800 Version-
DellF800 Firmware Version9.4.0.0
   DellF800 Version-
DellF800 Firmware Version9.5.0.0
   DellF800 Version-
DellF810 Firmware Version9.0.0.0
   DellF810 Version-
DellF810 Firmware Version9.1.0.0
   DellF810 Version-
DellF810 Firmware Version9.2.0.0
   DellF810 Version-
DellF810 Firmware Version9.2.1.0
   DellF810 Version-
DellF810 Firmware Version9.3.0.0
   DellF810 Version-
DellF810 Firmware Version9.4.0.0
   DellF810 Version-
DellF810 Firmware Version9.5.0.0
   DellF810 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.11% 0.269
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
security_alert@emc.com 5.3 3.9 1.4
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.