exploitDog

CVE-2023-25542

Опубликовано: 06 апр. 2023

Источник: nvd

CVSS3: 7

CVSS3: 7.8

EPSS Низкий

Описание

Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to escalated privileges.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000209461/dsa-2023-074
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000209461/dsa-2023-074
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:trusted_device_agent:*:*:*:*:*:*:*:*

Версия до 5.3.0 (исключая)

EPSS

Процентиль: 16%

0.00052

Низкий

7 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-276

CWE-276

Связанные уязвимости

GHSA-qr2c-96xp-p8jc

CVSS3: 7.8

github

почти 3 года назад

Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to escalated privileges.

EPSS

Процентиль: 16%

0.00052

Низкий

7 High

CVSS3

7.8 High

CVSS3

Дефекты

CWE-276

CWE-276