Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server version prior to 11.8.1 contain an Insecure Operation on Windows Junction Vulnerability during installation. A local malicious user could potentially exploit this vulnerability to create an arbitrary folder inside a restricted directory, leading to Privilege Escalation
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000217572/dsa-2023-271 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dell
Published: 2023-11-16T08:41:44.681Z
Updated: 2023-11-16T08:41:44.681Z
Reserved: 2023-07-26T08:13:50.420Z
Link: CVE-2023-39246
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-16T09:15:07.283
Modified: 2023-11-29T19:33:13.640
Link: CVE-2023-39246
JSON object: View
Redhat Information
No data.