Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-39257

Dell Rugged Control Center, version prior to 4.7, contains an Improper Access Control vulnerability. A local malicious standard user could potentially exploit this vulnerability to modify the content in an unsecured folder when product installation repair is performed, leading to privilege escalation on the system.

Published

2023-12-02T05:15:08.080

Last Modified

2024-11-21T08:15:00.397

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.3 (HIGH)

Weaknesses

Type: Secondary
CWE-284
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	dell	rugged_control_center	< 4.7	Yes

References

https://www.dell.com/support/kbdoc/en-us/000217705/dsa-2023-340 Vendor Advisory ([email protected])
https://www.dell.com/support/kbdoc/en-us/000217705/dsa-2023-340 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)