Dell Common Event Enabler, version 8.9.10.0 and prior, contain an insecure deserialization vulnerability in CAVATools. A local unauthenticated attacker could potentially exploit this vulnerability, leading to arbitrary code execution in the context of the logged in user. Exploitation of this issue requires a victim to open a malicious file.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HDell Common Event Enabler
APPDell≤ 8.9.10.0
Powiązane podatności
Dell Common Event Enabler, version(s) CEE 9.0.0.0, contain(s) an Improper Restriction of Communication Channel...
Dell Common Event Enabler 8.9.8.2 for Windows and prior, contain an improper access control vulnerability. A ...
Dell Common Event Enabler, version(s) CEE 9.0.0.0, contain(s) an Initialization of a Resource with an Insecure...
Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)
RCE w Dell Wyse Management Suite — akceptacja niezaufanych danych