PT-2024-13184 · Dell · Dell Pair Installer

Published

2024-01-24

Updated

2024-01-30

CVE-2023-44281

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell Pair Installer versions prior to 1.2.1

Description The issue allows a low privilege user with local access to the system to potentially exploit it and delete arbitrary files, resulting in Denial of Service.

Recommendations For versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue. As a temporary workaround, consider restricting local access to the system to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2023-44281

Affected Products

Dell Pair Installer

PT-2024-13184 · Dell · Dell Pair Installer

CVE-2023-44281

Weakness Enumeration

Related Identifiers

Affected Products

References · 6