Vulnerability CVE-2023-28071


Published: 2023-06-23

Description:

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).

Type:

CWE-1386

 References:
https://www.dell.com/support/kbdoc/en-us/000213546/dsa-2023-170-dell-command-update

Copyright 2024, cxsecurity.com

 

Back to Top