Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by replacing binaries in installed directory and taking reverse shell of the system leading to Privilege Escalation.
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000215881/dsa-2023-260 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2024-02-06T08:09:30.931Z
Updated: 2024-02-06T08:09:30.931Z
Reserved: 2023-05-09T06:09:57.041Z
Link: CVE-2023-32479
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-06T08:15:51.383
Modified: 2024-02-13T22:54:59.277
Link: CVE-2023-32479
JSON object: View
Redhat Information
No data.
CWE