Описание
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by replacing binaries in installed directory and taking reverse shell of the system leading to Privilege Escalation.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одно из
Одновременно
EPSS
6.7 Medium
CVSS3
7.8 High
CVSS3
Дефекты
Связанные уязвимости
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by replacing binaries in installed directory and taking reverse shell of the system leading to Privilege Escalation.
Уязвимость программного средства защиты конечных точек Encryption, программного средства предотвращения, обнаружения угроз безопасности информации Dell Endpoint Security Suite Enterprise и сервера управления безопасностью Dell Security Management Server, связанная с недостатками контроля доступа, позволяющая нарушителю повысить свои привилегии
EPSS
6.7 Medium
CVSS3
7.8 High
CVSS3