CVE-2023-44292
First published: Thu Nov 16 2023(Updated: )
Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. A local low-privileged attacker could potentially exploit this vulnerability, leading to gaining escalated privileges.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell Repository Manager | <3.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-44292?
CVE-2023-44292 is an Improper Access Control vulnerability in Dell Repository Manager 3.4.3 and prior versions.
What is the severity of CVE-2023-44292?
CVE-2023-44292 has a severity value of 7.8, which is considered high.
How does CVE-2023-44292 impact Dell Repository Manager?
CVE-2023-44292 allows a local low-privileged attacker to potentially exploit the vulnerability and gain escalated privileges in Dell Repository Manager.
How can I fix CVE-2023-44292?
To fix CVE-2023-44292, it is recommended to update Dell Repository Manager to version 3.4.4 or newer.
Where can I find more information about CVE-2023-44292?
More information about CVE-2023-44292 can be found in the Dell support knowledge base article: https://www.dell.com/support/kbdoc/en-us/000219303/dsa-2023-415-security-update-for-dell-repository-manager-vulnerability
- collector/mitre-cve
- collector/nvd-api
- vendor/dell
- product/repository manager
- canonical/dell repository manager