CVE-2023-32458
First published: Wed Sep 27 2023(Updated: )
Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during installation leading to a privilege escalation.
Credit: security_alert@emc.com security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| EMC AppSync | >=4.4.0.0<=4.6.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Dell AppSync vulnerability?
The vulnerability ID for this Dell AppSync vulnerability is CVE-2023-32458.
What is the severity level of CVE-2023-32458?
The severity level of CVE-2023-32458 is high with a CVSS score of 7.3.
What is the affected software for CVE-2023-32458?
The affected software for CVE-2023-32458 is Dell AppSync versions 4.4.0.0 to 4.6.0.0 including Service Pack releases.
What is the risk of CVE-2023-32458?
CVE-2023-32458 poses a risk of privilege escalation for local malicious users during installation.
How can I fix CVE-2023-32458?
To fix CVE-2023-32458, it is recommended to apply the security update provided by Dell through the reference link.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/emc
- canonical/emc appsync
- version/emc appsync/4.4.0.0
- version/emc appsync/4.6.0.0