First published: Thu Nov 16 2023(Updated: )
Dell OS Recovery Tool, versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0 contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability, leading to the elevation of privilege on the system.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell OS Recovery Tool | =2.2.4013 | |
Dell OS Recovery Tool | =2.3.7012.0 | |
Dell OS Recovery Tool | =2.3.7515.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of Dell OS Recovery Tool is CVE-2023-39259.
The severity level of CVE-2023-39259 is high with a severity value of 7.3.
The affected software versions of Dell OS Recovery Tool are 2.2.4013, 2.3.7012.0, and 2.3.7515.0.
CVE-2023-39259 is an Improper Access Control Vulnerability in Dell OS Recovery Tool versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0. A local authenticated non-administrator user could potentially exploit this vulnerability, leading to the elevation of privilege on the system.
To fix the vulnerability in Dell OS Recovery Tool, it is recommended to update to a patched version provided by Dell.