Lucene search
K

187 matches found

Cvelist
Cvelist
added 2023/02/10 12:30 p.m.28 views

CVE-2023-24573

Dell Command | Monitor versions prior to 10.9 contain an arbitrary folder delete vulnerability during uninstallation. A locally authenticated malicious user may potentially exploit this vulnerability leading to arbitrary folder deletion...

4.7CVSS7.1AI score0.00155EPSS
Exploits0References1
CVE
CVE
added 2023/02/10 12:30 p.m.42 views

CVE-2023-24573

Dell Command | Monitor prior to version 10.9 is affected by an arbitrary folder deletion vulnerability during uninstallation. The issue allows a locally authenticated malicious user to delete arbitrary folders. Root cause involves inadequate access control during uninstall. Impact is high for ava...

7.1CVSS6.9AI score0.00155EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/10 12:20 p.m.9 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

5.5CVSS7.1AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 2023/02/10 12:20 p.m.52 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update prior to 4.6.0 and 4.7.1 are affected. The installer component performs an insecure operation on Windows Junction, allowing a local attacker to delete arbitrary files without user interaction. Impact: high for availability/integrity; exploi...

7.1CVSS6.9AI score0.00176EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/02/10 12:20 p.m.23 views

CVE-2023-23698

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. A local malicious user may potentially exploit this vulnerability leading to arbitrary file delete...

5.5CVSS7.1AI score0.00176EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/10 12:0 a.m.7 views

多款Dell产品 安全漏洞

Dell Command Update is a Dell USA Inc. tool for automating driver, BIOS and firmware updates in Dell products. A security vulnerability exists in Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.6.0 and 4.7.1, which originates from the inclusion of an insecure action i...

7.1CVSS7.2AI score0.00176EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/10 12:0 a.m.6 views

Dell Command | Monitor 安全漏洞

Dell Command | Monitor is a software application from Dell, Inc. It enables IT administrators to easily manage fleet resource inventories, monitor system performance, modify BIOS settings, and remotely collect information about deployed Dell client systems. A security vulnerability exists in Dell...

7.1CVSS7.3AI score0.00155EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/08 12:0 a.m.4 views

PT-2023-6748 · Dell · Dell Command | Monitor

Name of the Vulnerable Software and Affected Versions: Dell Command | Monitor versions prior to 10.9 Description: The issue is related to inadequate access control in the Dell Command | Monitor software, which can be exploited to delete arbitrary files. A locally authenticated malicious user may...

7.1CVSS6.9AI score0.00155EPSS
Exploits0References5
NVD
NVD
added 2023/02/07 10:15 a.m.14 views

CVE-2023-23696

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. A locally authenticated malicious users could potentially exploit this vulnerability in order to write arbitrary files to the system...

7.8CVSS7.2AI score0.00463EPSS
Exploits0References1
Prion
Prion
added 2023/02/07 10:15 a.m.15 views

Authorization

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. A locally authenticated malicious users could potentially exploit this vulnerability in order to write arbitrary files to the system...

4.3CVSS7.6AI score0.00463EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/07 9:49 a.m.4 views

CVE-2023-23696

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. A locally authenticated malicious users could potentially exploit this vulnerability in order to write arbitrary files to the system...

7CVSS7.1AI score0.00463EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/07 9:49 a.m.18 views

CVE-2023-23696

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. A locally authenticated malicious users could potentially exploit this vulnerability in order to write arbitrary files to the system...

7CVSS7.8AI score0.00463EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/07 12:0 a.m.3 views

PT-2023-1580 · Dell · Dell Command | Intel Vpro Out Of Band

Name of the Vulnerable Software and Affected Versions: Dell Command Intel vPro Out of Band versions prior to 4.3.1 Description: The issue is related to an Improper Authorization vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability to write arbitrary...

7.8CVSS7.5AI score0.00463EPSS
Exploits0References4
NVD
NVD
added 2023/02/01 5:15 a.m.22 views

CVE-2022-34458

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in download operation component. A local malicious user could potentially exploit this vulnerability leading to the...

6.6CVSS6.3AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2023/02/01 5:15 a.m.4 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2023/02/01 5:15 a.m.23 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS7.5AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/01 4:28 a.m.27 views

CVE-2022-34459

Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a improper verification of cryptographic signature in get applicable driver component. A local malicious user could potentially exploit this vulnerability leading to malicious payload execution...

7.8CVSS7.7AI score0.0015EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.5 views

多款Dell产品 安全漏洞

Dell Command Update and Dell Update and Alienware Update are both products of Dell, Inc.Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in Dell products.Dell Update and Alienware Update is an update application. A security vulnerability exists in Dell...

6.6CVSS5.7AI score0.0018EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.4 views

多款Dell产品 数据伪造问题漏洞

Dell Command Update and Dell Update and Alienware Update are both products of Dell, Inc.Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in Dell products.Dell Update and Alienware Update is an update application. A security vulnerability exists in Dell...

7.8CVSS7.4AI score0.0015EPSS
Exploits0References2
OSV
OSV
added 2023/01/18 12:15 p.m.7 views

CVE-2022-34457

Dell command configuration, version 4.8 and prior, contains improper folder permission when installed not to default path but to non-secured path which leads to privilege escalation. This is critical severity vulnerability as it allows non-admin to modify the files inside installed directory and...

7.8CVSS5.8AI score0.00205EPSS
Exploits0References1
Rows per page
Query Builder