DSA-2024-056: Security Update for Dell Display and Peripheral Manager for macOS for an Improper Access Control Vulnerability
Shrnutí: Dell Display and Peripheral Manager for macOS remediation is available for an improper access control vulnerability that may be exploited by malicious users to compromise the affected system. ...
Tento článek se vztahuje na
Tento článek se nevztahuje na
Tento článek není vázán na žádný konkrétní produkt.
V tomto článku nejsou uvedeny všechny verze produktu.
Vliv
High
Podrobnosti
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
|---|---|---|---|
| CVE-2024-22452 | Dell Display and Peripheral Manager for macOS prior to 1.3 contains an improper access control vulnerability. A low privilege user could potentially exploit this vulnerability by modifying files in the installation folder to execute arbitrary code, leading to privilege escalation. | 7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
|---|---|---|---|
| CVE-2024-22452 | Dell Display and Peripheral Manager for macOS prior to 1.3 contains an improper access control vulnerability. A low privilege user could potentially exploit this vulnerability by modifying files in the installation folder to execute arbitrary code, leading to privilege escalation. | 7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
Dotčené produkty a náprava
| Product | Software/Firmware | Affected Versions | Remediated Versions | Release Date | Link |
|---|---|---|---|---|---|
| Dell Display and Peripheral Manager for macOS | Software | Versions prior to 1.3 | Versions 1.3 or later | 02/27/2024 | Support for Dell Display and Peripheral Manager | Drivers & Downloads | Dell US |
| Product | Software/Firmware | Affected Versions | Remediated Versions | Release Date | Link |
|---|---|---|---|---|---|
| Dell Display and Peripheral Manager for macOS | Software | Versions prior to 1.3 | Versions 1.3 or later | 02/27/2024 | Support for Dell Display and Peripheral Manager | Drivers & Downloads | Dell US |
Historie změn
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-02-27 | Initial Release |
| 2.0 | 2024-05-22 | Updated for enhanced presentation with no changes to conent. |
Přijetí
CVE-2024-22452: Dell would like to thank pwn2car for reporting this issue.
Související informace
Právní upozornění
Dotčené produkty
Dell Display and Peripheral ManagerVlastnosti článku
Číslo článku: 000221414
Typ článku: Dell Security Advisory
Poslední úprava: 23 kvě 2024
Najděte odpovědi na své otázky od ostatních uživatelů společnosti Dell
Služby podpory
Zkontrolujte, zda se na vaše zařízení vztahují služby podpory.