Lucene search
K

187 matches found

OSV
OSV
added 2023/06/23 11:15 a.m.3 views

CVE-2023-28071

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Servi...

7.1CVSS5.9AI score0.00179EPSS
Exploits0References1
NVD
NVD
added 2023/06/23 11:15 a.m.21 views

CVE-2023-28071

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Servi...

7.1CVSS6.5AI score0.00179EPSS
Exploits0References1
Prion
Prion
added 2023/06/23 11:15 a.m.19 views

Design/Logic Flaw

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Servi...

3.2CVSS6.9AI score0.00179EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2023/06/23 10:37 a.m.37 views

CVE-2023-28071

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Servi...

6.3CVSS7.1AI score0.00179EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/06/23 12:0 a.m.6 views

部分Dell产品 后置链接漏洞

Dell Command Update and Dell Update and Alienware Update are both products of Dell, Inc.Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in Dell products.Dell Update and Dell Command Update is a tool used to automatically update drivers, BIOS, and firmware in...

7.3CVSS7.4AI score0.00193EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.5 views

PT-2023-21527 · Dell · Alienware Update +2

Name of the Vulnerable Software and Affected Versions: Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior Description: The issue is related to an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit thi...

7.3CVSS7.1AI score0.00193EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/06/23 12:0 a.m.6 views

Dell Command Update 后置链接漏洞

Dell Command Update is a tool from Dell USA used to automatically update drivers, BIOS and firmware in Dell products. A security vulnerability exists in Dell Command Update, Dell Update, Alienware Update version 4.9.0 and prior versions. An attacker could exploit the vulnerability to create...

7.1CVSS7.3AI score0.00179EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.4 views

PT-2023-21533 · Dell · Alienware Update +2

Name of the Vulnerable Software and Affected Versions: Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior Description: The issue is related to an Insecure Operation on Windows Junction / Mount Point, which could be exploited by a local malicious user to create...

7.1CVSS6.8AI score0.00179EPSS
Exploits0References3
NVD
NVD
added 2023/05/05 7:15 a.m.11 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.8CVSS7.4AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2023/05/05 7:15 a.m.3 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.8CVSS5.8AI score0.00156EPSS
Exploits0References1
Prion
Prion
added 2023/05/05 7:15 a.m.13 views

Design/Logic Flaw

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

4.3CVSS7.7AI score0.00156EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/05 6:41 a.m.13 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.3CVSS7.9AI score0.00156EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/05 6:41 a.m.7 views

CVE-2023-28068

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. A local authenticated malicious user can potentially exploit this vulnerability leading to privilege escalation by writing to a protected directory when Dell Command Monitor is installed to a...

7.3CVSS7.8AI score0.00156EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/05 12:0 a.m.4 views

PT-2023-21529 · Dell · Dell Command | Monitor

Name of the Vulnerable Software and Affected Versions: Dell Command Monitor versions 10.9 and prior Description: The issue is related to improper folder permissions, allowing a local authenticated malicious user to potentially exploit this vulnerability, leading to privilege escalation by writing...

7.8CVSS7.7AI score0.00156EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/05/05 12:0 a.m.3 views

Dell Command | Monitor 访问控制错误漏洞

Dell Command | Monitor is a software application from Dell, Inc. Dell Command | Monitor is a software application from Dell Inc. that enables IT administrators to easily manage fleet resource inventories, monitor system performance, modify BIOS settings, and remotely collect information about...

7.8CVSS7.4AI score0.00156EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.6 views

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs lies in their improper verification of the cryptographic signature, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs is related to improper verification of the cryptographic signature. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.6AI score0.0015EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.7 views

The vulnerability of the Dell Command Intel vPro Out Of Band software is related to deficiencies in the authentication process, which allows a malicious individual to elevate their privileges.

The vulnerability of the Dell Command | Intel vPro Out-of-Band software is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to gain increased privileges...

7.8CVSS7.2AI score0.00463EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.8 views

Vulnerabilities of Dell Command | Update, Dell Update, and Alienware Update programs, which allow attackers to disclose protected information

The vulnerability of the Dell Command | Update, Dell Update, and Alienware Update programs involves exposing system data that is not authorized to be exposed in a controlled area. Exploiting this vulnerability can allow an intruder to expose protected information...

6.6CVSS5.9AI score0.0018EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/02/21 12:0 a.m.8 views

The vulnerability of the application package for configuring BIOS using Dell Command Configure, related to improper handling of permissions, allows a malicious individual to increase their privileges.

The vulnerability of the BIOS configuration application for Dell Command Configure is related to improper handling of permissions. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.3CVSS7.2AI score0.00205EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/02/13 8:15 a.m.2 views

CVE-2023-24572

Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. A locally authenticated malicious user may potentially exploit this vulnerability leading to arbitrary folder deletion...

3.3CVSS5.9AI score0.00173EPSS
Exploits0References1
Rows per page
Query Builder