2 matches found
CVE-2024-37129
Dell Inventory Collector exposes a Path Traversal vulnerability in versions prior to 12.3.0.6. A locally authenticated attacker could exploit an inadequate directory-path restriction to achieve arbitrary code execution on the affected host. Affected component is the Dell Inventory Collector (Wind...
CVE-2024-47480
Dell Inventory Collector Client is affected in versions prior to 12.7.0 by an Improper Link Resolution Before File Access vulnerability. The root cause is improper link resolution that may allow a low-privilege, locally authenticated attacker to gain Elevation of Privileges and unauthorized file ...