Lucene search

K
cvelistDellCVELIST:CVE-2022-34432
HistoryOct 11, 2022 - 4:40 p.m.

CVE-2022-34432

2022-10-1116:40:22
CWE-77
dell
www.cve.org
4
dell hybrid client
gedit vulnerability
guest attacker
deletion
files folders

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

34.8%

Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders.

CNA Affected

[
  {
    "vendor": "Dell",
    "product": "Dell Hybrid Client (DHC)",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "1.8",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

34.8%

Related for CVELIST:CVE-2022-34432