exploitDog

CVE-2023-28070

Опубликовано: 03 мая 2023

Источник: nvd

CVSS3: 6.7

CVSS3: 7.8

EPSS Низкий

Описание

Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability. A local malicious user could potentially exploit this vulnerability during installation or update process leading to privilege escalation.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000212277/dsa-2023-135
Patch
Vendor Advisory
https://www.dell.com/support/kbdoc/en-us/000212277/dsa-2023-135
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:alienware_command_center:*:*:*:*:*:*:*:*

Версия до 5.5.46.0 (исключая)

EPSS

Процентиль: 20%

0.00065

Низкий

6.7 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-284

Связанные уязвимости

GHSA-4g68-7h5f-f7j6

CVSS3: 6.7

github

почти 3 года назад

Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability. A local malicious user could potentially exploit this vulnerability during installation or update process leading to privilege escalation.

EPSS

Процентиль: 20%

0.00065

Низкий

6.7 Medium

CVSS3

7.8 High

CVSS3

Дефекты

CWE-284