ГлавнаяУязвимости → CVE-2024-47480
7.8высокая

CVE-2024-47480

Описание

Dell Inventory Collector Client, versions prior to 12.7.0, contains an Improper Link Resolution Before File Access vulnerability. A low-privilege attacker with local access may exploit this vulnerability, potentially resulting in Elevation of Privileges and unauthorized file system access.

Затрагиваемое ПО
Dell Inventory collector
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.dell.com/support/kbdoc/en-us/000255700/dsa-2024-475