CVE-2023-24574

HIGH

Dell Enterprise SONiC OS - Uncontrolled Resource Consumption

Title source: llm
STIX 2.1

Description

Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to uncontrolled resource consumption by creating permanent home directories for unauthenticated users.

References (1)

Core 1

Scores

CVSS v3 7.5
EPSS 0.0045
EPSS Percentile 63.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-400
Status published
Products (1)
dell/enterprise_sonic_distribution 3.5.3 - 4.0.3
Published Feb 02, 2023
Tracked Since Feb 18, 2026