Lucene search
K
DellCommand|configure

4 matches found

CVE
CVE
added 2019/12/06 8:40 p.m.159 views

CVE-2019-18575

Dell Command Configure before version 4.2.1 is affected by an uncontrolled search path vulnerability. A locally authenticated attacker could abuse a symlink to a target file to overwrite or corrupt a specified file on the system. Impact is file overwrite/corruption within the context of the user ...

7.1CVSS6.8AI score0.0034EPSS
CVE
CVE
added 2023/01/18 11:38 a.m.60 views

CVE-2022-34457

Dell Command Configure (Dell Command Configure, version 4.8 and prior) is affected by an elevation of privilege vulnerability due to improper folder permissions when installed to a non-default, non-secured path. A non-admin user can modify files inside the installed directory, potentially making ...

7.8CVSS7.7AI score0.00205EPSS
CVE
CVE
added 2023/11/23 6:27 a.m.51 views

CVE-2023-43086

Dell Command | Configure (versions prior to 4.11.0) is affected by an improper access control vulnerability that could allow a local attacker to modify files inside the installation folder during application upgrade, leading to privilege escalation. The root cause is an access control weakness du...

7.8CVSS7.5AI score0.00219EPSS
CVE
CVE
added 2023/11/23 6:41 a.m.44 views

CVE-2023-44289

CVE-2023-44289 affects Dell Command | Configure prior to version 4.11.0. The issue is an improper access control vulnerability that enables a local malicious standard user to escalate privileges during repair/changing installation. Affected software: Dell Command | Configure (pre-4.11.0). Root ca...

7.8CVSS7.5AI score0.00196EPSS