exploitDog

CVE-2024-47480

Опубликовано: 18 дек. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution Before File Access vulnerability. A low-privilege attacker with local access may exploit this vulnerability, potentially resulting in Elevation of Privileges and unauthorized file system access.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000255700/dsa-2024-475
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:inventory_collector:*:*:*:*:*:*:*:*

Версия до 12.7.0 (исключая)

EPSS

Процентиль: 30%

0.00111

Низкий

7.8 High

CVSS3

Дефекты

CWE-61

CWE-59

Связанные уязвимости

GHSA-72fc-7pff-vv9c

CVSS3: 7.8

github

около 1 года назад

Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution Before File Access vulnerability. A low-privilege attacker with local access may exploit this vulnerability, potentially resulting in Elevation of Privileges and unauthorized file system access.

EPSS

Процентиль: 30%

0.00111

Низкий

7.8 High

CVSS3

Дефекты

CWE-61

CWE-59