CVE-2023-39253

Summary

Dell OS Recovery Tool, versions 2.2.4013, 2.3.7012.0, and 2.3.7515.0 contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability, leading to the elevation of privilege on the system.

Affected Software

VendorProductVersion RangeStatus
DellDell OS Recovery ToolVersions 2.2.4013, 2.3.7012.0, and 2.3.7515.0.affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References