CVE-2023-39259
First published: Thu Nov 16 2023(Updated: )
Dell OS Recovery Tool, versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0 contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability, leading to the elevation of privilege on the system.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell OS Recovery Tool | =2.2.4013 | |
| Dell OS Recovery Tool | =2.3.7012.0 | |
| Dell OS Recovery Tool | =2.3.7515.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of Dell OS Recovery Tool?
The vulnerability ID of Dell OS Recovery Tool is CVE-2023-39259.
What is the severity level of CVE-2023-39259?
The severity level of CVE-2023-39259 is high with a severity value of 7.3.
What is the affected software version of Dell OS Recovery Tool?
The affected software versions of Dell OS Recovery Tool are 2.2.4013, 2.3.7012.0, and 2.3.7515.0.
What is the description of CVE-2023-39259?
CVE-2023-39259 is an Improper Access Control Vulnerability in Dell OS Recovery Tool versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0. A local authenticated non-administrator user could potentially exploit this vulnerability, leading to the elevation of privilege on the system.
How can I fix the vulnerability in Dell OS Recovery Tool?
To fix the vulnerability in Dell OS Recovery Tool, it is recommended to update to a patched version provided by Dell.
- collector/mitre-cve
- collector/nvd-api
- vendor/dell
- product/os recovery tool
- canonical/dell os recovery tool