CVE-2023-32448

Summary

PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains License Key Stored in Cleartext vulnerability. A local user with access to the installation directory can retrieve the license key of the product and use it to install and license PowerPath on different systems.

Affected Software

VendorProductVersion RangeStatus
DellPowerPath Windows7.0, 7.1 & 7.2affected

Weaknesses

  • CWE-312: CWE-312: Cleartext Storage of Sensitive Information

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References