Описание
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions vulnerability. A regular user (non-admin) can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:dell:powerpath:7.0:*:*:*:*:windows:*:*
cpe:2.3:a:dell:powerpath:7.1:*:*:*:*:windows:*:*
cpe:2.3:a:dell:powerpath:7.2:*:*:*:*:windows:*:*
EPSS
Процентиль: 11%
0.00039
Низкий
7 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 7
github
больше 2 лет назад
PowerPath for Windows, versions 7.0, 7.1 & 7.2 contains Insecure File and Folder Permissions vulnerability. A regular user (non-admin) can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the context of NT AUTHORITY\SYSTEM.
EPSS
Процентиль: 11%
0.00039
Низкий
7 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-276