exploitDog

CVE-2023-25543

Опубликовано: 06 фев. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in DPM service. A low privileged malicious user could potentially exploit this vulnerability in order to elevate privileges on the system.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000209464/dsa-2023-075
Patch
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000209464/dsa-2023-075
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:power_manager:*:*:*:*:*:*:*:*

Версия до 3.14 (исключая)

EPSS

Процентиль: 8%

0.0003

Низкий

7.8 High

CVSS3

Дефекты

CWE-280

CWE-755

Связанные уязвимости

GHSA-r3mr-jgh6-phpp

CVSS3: 7.8

github

около 2 лет назад

Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in DPM service. A low privileged malicious user could potentially exploit this vulnerability in order to elevate privileges on the system.

EPSS

Процентиль: 8%

0.0003

Низкий

7.8 High

CVSS3

Дефекты

CWE-280

CWE-755