Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI. A local high privileged attacker could potentially exploit this vulnerability, to bypass security restrictions. Exploitation may lead to a system take over by an attacker
History

Tue, 01 Oct 2024 15:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*:*
cpe:2.3:a:dell:powerprotect_data_domain:-:*:*:*:lts:*:*:*
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2023-12-14T15:22:27.116Z

Updated: 2024-10-01T14:44:19.118Z

Reserved: 2023-09-28T09:25:45.713Z

Link: CVE-2023-44279

cve-icon Vulnrichment

Updated: 2024-08-02T19:59:51.987Z

cve-icon NVD

Status : Modified

Published: 2023-12-14T16:15:46.017

Modified: 2024-11-21T08:25:34.707

Link: CVE-2023-44279

cve-icon Redhat

No data.