CVE-2023-39246
16.11.2023, 09:15
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server version prior to 11.8.1 contain an Insecure Operation on Windows Junction Vulnerability during installation. A local malicious user could potentially exploit this vulnerability to create an arbitrary folder inside a restricted directory, leading to Privilege Escalation
| Vendor | Product | Version |
|---|---|---|
| dell | endpoint_security_suite_enterprise | 𝑥 < 11.8.1 |
| dell | encryption | 𝑥 < 11.8.1 |
| dell | security_management_server | 𝑥 < 11.8.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-61 - UNIX Symbolic Link (Symlink) FollowingThe software, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the software to operate on unauthorized files.
- CWE-59 - Improper Link Resolution Before File Access ('Link Following')The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.