CVE-2023-43066

Vulnerability

Dell Unity, Unity VSA, and Unity XT operating environments prior to version 5.3 contain a Restricted Shell Bypass vulnerability identified as CVE-2023-43066 [1]. The restricted shell is designed to limit the commands available to authenticated users through the CLI; however, a flaw allows an attacker to issue certain commands that circumvent these restrictions. The exact commands and code path are not publicly detailed, but the vulnerability is reachable solely through the CLI interface [1].

Exploitation

To exploit this vulnerability, an attacker must have local access to the Dell Unity device and valid authentication credentials allowing CLI interaction [1]. With these prerequisites, the attacker can issue specific commands that bypass the restricted shell's limitations, effectively escaping the intended command constraints [1]. No additional user interaction or race condition is required; the exploit is executed directly from the authenticated CLI session.

Impact

Successful exploitation allows the attacker to escape the restricted shell environment, potentially gaining elevated command capabilities beyond those intended for the authenticated role [1]. This can lead to privilege escalation on the device, enabling the attacker to execute arbitrary commands, access sensitive data, or modify system configurations within the scope of the affected system.

Mitigation

Dell has released a fix in Unity OE version 5.3 and later [1]. All customers running versions prior to 5.3 should upgrade to the latest available release to remediate this vulnerability [1]. No workarounds are documented; applying the security update is the sole mitigation. The advisory notes multiple other CVEs addressed in the same update, underscoring the importance of a comprehensive patch [1].