CVE-2023-39257
HIGHDell Rugged Control Center < 4.7 - Privilege Escalation via Unsecured Folder Modification
Title source: llmDescription
Dell Rugged Control Center, version prior to 4.7, contains an Improper Access Control vulnerability. A local malicious standard user could potentially exploit this vulnerability to modify the content in an unsecured folder when product installation repair is performed, leading to privilege escalation on the system.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://www.dell.com/support/kbdoc/en-us/000217705/dsa-2023-340
Scores
CVSS v3
7.3
EPSS
0.0003
EPSS Percentile
9.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-284
Status
published
Products (1)
dell/rugged_control_center
< 4.7
Published
Dec 02, 2023
Tracked Since
Feb 18, 2026