Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000213546/dsa-2023-170-dell-command-update | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2023-06-23T10:37:19.968Z
Updated: 2023-06-23T10:37:19.968Z
Reserved: 2023-03-10T05:07:55.140Z
Link: CVE-2023-28071
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-23T11:15:09.790
Modified: 2023-06-30T21:17:54.033
Link: CVE-2023-28071
JSON object: View
Redhat Information
No data.