Lucene search

[email protected]CVE-2023-24569

HistoryFeb 10, 2023 - 1:15 p.m.

CVE-2023-24569

2023-02-1013:15:11

CWE-20

[email protected]

web.nvd.nist.gov

dell

alienware

command center

cve-2023-24569

improper input validation

vulnerability

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability. A local authenticated malicious user could potentially send malicious input to a named pipe in order to elevate privileges on the system.

Affected configurations

NVD

Node

dellalienware_command_centerRange≤5.5.37.0

CPENameOperatorVersion
dell:alienware_command_centerdell alienware command centerle5.5.37.0

CPE	Name	Operator	Version
dell:alienware_command_center	dell alienware command center	le	5.5.37.0

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Alienware Command Center (AWCC)",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "5.5.37.0",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.dell.com/support/kbdoc/en-us/000208327/dsa-2023-044

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2023-24569

cnvd1 cvelist1 prion1 nvd1