CVE-2023-22576

Summary

CVE-2023-22576 identifies a Local Privilege Escalation vulnerability in Dell Repository Manager versions 3.4.2 and earlier, which could allow a local low-privileged attacker to execute arbitrary code with higher privileges. This flaw stems from improper privilege management, potentially impacting the integrity and availability of services on affected systems. Remediation involves updating to a patched version of the software as recommended by Dell's security advisory. The vulnerability poses a high risk to organizations, given its potential for significant integrity and confidentiality impacts, as indicated by a CVSS base score of 7.0. Exploitation of this vulnerability requires low privileges and no user interaction, making it easier for attackers to exploit it locally.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.