CVE-2023-32470
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Sep 8, 2023
Updated: Sep 13, 2023
CWE ID 1386
Summary
CVE-2023-32470 is a vulnerability affecting Dell Digital Delivery versions before 5.0.82.0. This issue involves an insecure operation on Windows junction/mount points. A local malicious user can exploit this vulnerability to create arbitrary folders, resulting in a permanent Denial of Service (DoS) attack. This can cause significant disruption to the affected system. Users are advised to update their Dell Digital Delivery software to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Dell Digital Delivery
Affected Vendors
- Dell Technologies, Inc.