CVE-2023-44285

Summary

Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an improper access control vulnerability. A local malicious user with low privileges could potentially exploit this vulnerability leading to escalation of privilege.

Affected Software

VendorProductVersion RangeStatus
DellPowerProtect DDVersions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110affected

Weaknesses

  • CWE-1220: CWE-1220: Insufficient Granularity of Access Control

ADP Enrichment

CVE Program Container

Additional References

References