Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
June 16, 2023Rewterz Threat Update – NIFT Claimed To Suffers Severe Cyber Attack: Data Centers Down, Clearing Operations Temporarily Halted
June 16, 2023Rewterz Threat Alert – DarkCrystal RAT (DCRat) – Active IOCs
June 16, 2023Rewterz Threat Update – NIFT Claimed To Suffers Severe Cyber Attack: Data Centers Down, Clearing Operations Temporarily Halted
June 16, 2023Severity
High
Analysis Summary
CVE-2023-32465
Dell Power Protect Cyber Recovery could allow a remote authenticated attacker to bypass security restrictions, caused by an authentication bypass flaw. By sending a specially crafted request, an attacker could exploit this vulnerability to gain unauthorized admin access to the Cyber Recovery application.
Impact
- Security Bypass
Indicators Of Compromise
CVE
- CVE-2023-32465
Affected Vendors
Dell
Affected Products
- Dell PowerProtect Cyber Recovery 19.13.0.2
- Dell PowerProtect Cyber Recovery 19.4
Remediation
Refer to Dell DSA Identifier for patch, upgrade or suggested workaround information.