Описание
Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run an arbitrary executable with administrative privileges on the affected system.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.5.2015 (исключая)
cpe:2.3:a:dell:digital_delivery:*:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00203
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-276
CWE-276
Связанные уязвимости
github
больше 3 лет назад
Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run an arbitrary executable with administrative privileges on the affected system.
EPSS
Процентиль: 42%
0.00203
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-276
CWE-276