Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege
References
Link | Resource |
---|---|
https://www.dell.com/support/kbdoc/en-us/000225474/dsa-2024-242 | Vendor Advisory |
Configurations
History
08 Aug 2024, 21:10
Type | Values Removed | Values Added |
---|---|---|
First Time |
Dell peripheral Manager
Dell |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CPE | cpe:2.3:a:dell:peripheral_manager:*:*:*:*:*:*:*:* | |
References | () https://www.dell.com/support/kbdoc/en-us/000225474/dsa-2024-242 - Vendor Advisory |
31 Jul 2024, 12:57
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
31 Jul 2024, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-31 09:15
Updated : 2024-08-08 21:10
NVD link : CVE-2024-32857
Mitre link : CVE-2024-32857
CVE.ORG link : CVE-2024-32857
JSON object : View
Products Affected
dell
- peripheral_manager
CWE
CWE-427
Uncontrolled Search Path Element