Lucene search

DellCVELIST:CVE-2023-24575

HistoryFeb 21, 2023 - 4:03 a.m.

CVE-2023-24575

2023-02-2104:03:48

CWE-428

dell

www.cve.org

dell multifunction printer

local privilege escalation

exploitation

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Dell Multifunction Printer E525w Driver and Software Suite, versions prior to 1.047.2022, A05, contain a local privilege escalation vulnerability that could be exploited by malicious users to compromise the affected system

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Dell Multifunction Printer E525w Driver and Software Suite",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "Versions prior to 1.047.2022, A05",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.dell.com/support/kbdoc/en-us/000208396/dsa-2023-043

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2023-24575