Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2023-32454 | 1 Dell | 1 Update Package Framework | 2024-02-13 | N/A | 7.1 HIGH |
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service | |||||
CVE-2023-32474 | 1 Dell | 1 Display Manager | 2024-02-12 | N/A | 6.6 MEDIUM |
Dell Display Manager application, version 2.1.1.17 and prior, contain an insecure operation on windows junction/mount point. A local malicious user could potentially exploit this vulnerability during installation leading to arbitrary folder or file deletion | |||||
CVE-2023-40623 | 1 Sap | 1 Businessobjects | 2023-12-10 | N/A | 7.1 HIGH |
SAP BusinessObjects SuiteĀ Installer - version 420, 430, allows an attacker within the network to create a directory under temporary directory and link it to a directory with operating system files. On successful exploitation the attacker can delete all the operating system files causing a limited impact on integrity and completely compromising the availability of the system. | |||||
CVE-2023-32470 | 1 Dell | 1 Digital Delivery | 2023-12-10 | N/A | 5.5 MEDIUM |
Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS). |