Security Advisory

CVE-2023-3264

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-14 04:05:58

Last updated 2024-10-09 14:40:56

Assigner trellix

State PUBLISHED

Description

The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier uses hard-coded credentials for all interactions with the internal Postgres database. A malicious agent with the ability to execute operating system commands on the device can leverage this vulnerability to read, modify, or delete arbitrary database records.

← Browse all CVEs View on cve.org ↗