CVE-2023-39244
First published: Thu Feb 15 2024(Updated: )
DELL ESI (Enterprise Storage Integrator) for SAP LAMA, version 10.0, contains an information disclosure vulnerability in EHAC component. An remote unauthenticated attacker could potentially exploit this vulnerability by eavesdropping the network traffic to gain admin level credentials.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| DELL Enterprise Storage Integrator | ||
| SAP Landscape Management | <10.0.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-39244?
CVE-2023-39244 is classified as an information disclosure vulnerability which can lead to compromise of sensitive credentials.
How do I fix CVE-2023-39244?
To fix CVE-2023-39244, apply the security update provided by DELL for the Enterprise Storage Integrator for SAP LAMA.
Who is affected by CVE-2023-39244?
CVE-2023-39244 affects DELL Enterprise Storage Integrator for SAP Landscape Management version 10.0.
Can CVE-2023-39244 be exploited remotely?
Yes, CVE-2023-39244 can be exploited remotely by an unauthenticated attacker through network traffic eavesdropping.
What is the impact of exploiting CVE-2023-39244?
Exploiting CVE-2023-39244 may allow an attacker to gain administrative level credentials, compromising the security of the system.
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/author
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/source
- agent/severity
- agent/last-modified-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- vendor/dell
- canonical/dell enterprise storage integrator
- canonical/sap landscape management