Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-32450: DSA-2023-181: Dell Power Manager Security Update for an Improper Access Control Vulnerability

Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.

CVE
Open in Source
#vulnerability#dell

Vaikutus

Medium

Tiedot

Proprietary Code CVE(s)

Description

CVSS Base Score

CVSS Vector String

CVE-2023-32450

Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.

6.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Proprietary Code CVE(s)

Description

CVSS Base Score

CVSS Vector String

CVE-2023-32450

Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.

6.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Dell Technologies suosittelee, että kaikki asiakkaat ottavat huomioon sekä CVSS-peruspistemäärän että kaikki asiaankuuluvat väliaikaiset ja ympäristöön liittyvät pisteet, jotka voivat vaikuttaa tietyn tietoturvahaavoittuvuuden mahdolliseen vakavuuteen.

Tuotteet, joihin asia vaikuttaa ja tilanteen korjaaminen

Product

Software/Firmware

Affected Versions

Remediated Version

Release Date

Update link

Dell Power Manager

Software

Versions 3.3 to 3.14

3.15

2023-07-26

https://www.dell.com/support/home/drivers/driversdetails?driverid=YX9MN

Product

Software/Firmware

Affected Versions

Remediated Version

Release Date

Update link

Dell Power Manager

Software

Versions 3.3 to 3.14

3.15

2023-07-26

https://www.dell.com/support/home/drivers/driversdetails?driverid=YX9MN

Keinoja ongelman kiertämiseen tai lieventämiseen

None.

Versiohistoria

Revision

Date

Description

1.0

2023-07-26

Initial Release

Asiaan liittyvät tiedot

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

26 heinäk. 2023

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE