CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:sonicwall:directory_services_connector:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

07 Nov 2023, 21:14

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
References (MISC) https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0016 - (MISC) https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0016 - Vendor Advisory
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:directory_services_connector:*:*:*:*:*:*:*:*
CWE CWE-269
First Time Sonicwall
Microsoft
Sonicwall directory Services Connector
Microsoft windows

27 Oct 2023, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-27 08:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-44219

Mitre link : CVE-2023-44219

CVE.ORG link : CVE-2023-44219


JSON object : View

Products Affected

sonicwall

  • directory_services_connector

microsoft

  • windows
CWE
CWE-269

Improper Privilege Management