Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000216243/dsa-2023-224 | Patch Vendor Advisory |
Configurations
History
13 Sep 2023, 14:37
Type | Values Removed | Values Added |
---|---|---|
First Time |
Dell digital Delivery
Dell |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
CPE | cpe:2.3:a:dell:digital_delivery:*:*:*:*:*:*:*:* | |
References | (MISC) https://www.dell.com/support/kbdoc/en-us/000216243/dsa-2023-224 - Patch, Vendor Advisory |
08 Sep 2023, 06:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-08 06:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-32470
Mitre link : CVE-2023-32470
CVE.ORG link : CVE-2023-32470
JSON object : View
Products Affected
dell
- digital_delivery
CWE
CWE-1386
Insecure Operation on Windows Junction / Mount Point