CVE-2023-43086

Summary

Dell Command | Configure, versions prior to 4.11.0, contains an improper access control vulnerability. A local malicious user could potentially modify files inside installation folder during application upgrade, leading to privilege escalation.

Affected Software

VendorProductVersion RangeStatus
DellDell Command Configure (DCC)Versions prior to 4.11.0affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References