CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39576
https://notcve.org/view.php?id=CVE-2024-39576
Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges. • https://www.dell.com/support/kbdoc/en-us/000227010/dsa-2024-323 • CWE-266: Incorrect Privilege Assignment •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25543
https://notcve.org/view.php?id=CVE-2023-25543
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in DPM service. A low privileged malicious user could potentially exploit this vulnerability in order to elevate privileges on the system. Dell Power Manager, versiones anteriores a la 3.14, contienen una vulnerabilidad de autorización incorrecta en el servicio DPM. Un usuario malintencionado con pocos privilegios podría explotar esta vulnerabilidad para elevar los privilegios en el sistema. • https://www.dell.com/support/kbdoc/en-us/000209464/dsa-2023-075 • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-32450
https://notcve.org/view.php?id=CVE-2023-32450
Dell Power Manager, Versions 3.3 to 3.14 contains an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access. Dell Power Manager en versiones de la 3.3 hasta la 3.14 contiene una vulnerabilidad de control de acceso inadecuado. Un usuario malintencionado con pocos privilegios podría aprovechar esta vulnerabilidad para ejecutar código arbitrario con acceso limitado. • https://www.dell.com/support/kbdoc/en-us/000215215/dsa-2023-181-dell-power-manager-security-update-for-an-improper-access-control-vulnerability • CWE-379: Creation of Temporary File in Directory with Insecure Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28051
https://notcve.org/view.php?id=CVE-2023-28051
Dell Power Manager, versions 3.10 and prior, contains an Improper Access Control vulnerability. A low-privileged attacker could potentially exploit this vulnerability to elevate privileges on the system. • https://www.dell.com/support/kbdoc/en-us/000211891/dsa-2023-221-dell-power-manager • CWE-284: Improper Access Control •