Описание
Dell EMC PowerStore, Versions prior to v3.0.0.0 contain a DLL Hijacking vulnerability in PSTCLI. A local attacker can potentially exploit this vulnerability to execute arbitrary code, escalate privileges, and bypass software allow list solutions, leading to system takeover or IP exposure.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.0.0.0-1732745 (исключая)
cpe:2.3:a:dell:powerstore_command_line_interface:*:*:*:*:*:linux:*:*
EPSS
Процентиль: 17%
0.00055
Низкий
5.5 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-427
CWE-427
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Dell EMC PowerStore, Versions prior to v3.0.0.0 contain a DLL Hijacking vulnerability in PSTCLI. A local attacker can potentially exploit this vulnerability to execute arbitrary code, escalate privileges, and bypass software allow list solutions, leading to system takeover or IP exposure.
EPSS
Процентиль: 17%
0.00055
Низкий
5.5 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-427
CWE-427