CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25542
https://notcve.org/view.php?id=CVE-2023-25542
Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to escalated privileges. • https://www.dell.com/support/kbdoc/en-us/000209461/dsa-2023-074 • CWE-276: Incorrect Default Permissions •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28046
https://notcve.org/view.php?id=CVE-2023-28046
Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder deletion vulnerability during uninstallation A local low privilege attacker could potentially exploit this vulnerability, leading to the deletion of arbitrary files on the operating system with high privileges. • https://www.dell.com/support/kbdoc/en-us/000211727/dsa-2023 • CWE-272: Least Privilege Violation •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28069
https://notcve.org/view.php?id=CVE-2023-28069
Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. A remote unauthenticated attacker can phish the legitimate user to redirect to malicious website leading to information disclosure and launch of phishing attacks. • https://www.dell.com/support/kbdoc/en-us/000204266/dsa-2022-258-dell-streaming-data-platform-security-update-for-multiple-third-party-component-vulnerabilities • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-25942
https://notcve.org/view.php?id=CVE-2023-25942
Dell PowerScale OneFS versions 8.2.x-9.4.x contain an uncontrolled resource consumption vulnerability. A malicious network user with low privileges could potentially exploit this vulnerability in SMB, leading to a potential denial of service. • https://www.dell.com/support/kbdoc/en-us/000211539/dell-emc-powerscale-onefs-security • CWE-664: Improper Control of a Resource Through its Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-25941
https://notcve.org/view.php?id=CVE-2023-25941
Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to Denial of service, escalation of privileges, and information disclosure. This vulnerability breaks the compliance mode guarantee. • https://www.dell.com/support/kbdoc/en-us/000211539/dell-emc-powerscale-onefs-security • CWE-276: Incorrect Default Permissions •