Rewterz Threat Alert – Snake Keylogger’s Malware – Active IOCs
February 21, 2023Rewterz Threat Advisory – CVE-2023-20855 – VMware vRealize Orchestrator XML external Vulnerability
February 22, 2023Rewterz Threat Alert – Snake Keylogger’s Malware – Active IOCs
February 21, 2023Rewterz Threat Advisory – CVE-2023-20855 – VMware vRealize Orchestrator XML external Vulnerability
February 22, 2023Severity
Medium
Analysis Summary
CVE-2023-23695
Dell Secure Connect Gateway could allow a remote attacker to obtain sensitive information, caused by a broken cryptographic algorithm. By carrying out a man-in-the-middle attack, an attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-23695
Affected Vendors
Dell
Affected Products
- Dell Secure Connect Gateway 5.14.00.12
Remediation
Refer to Dell DSA Identifier for patch, upgrade or suggested workaround information.