CVE-2023-44281

HIGH Year: 2023
CVSS v3 Score
7.1
High
Weakness Type
CWE-264
View all →

Vulnerability Description

Dell Pair Installer version prior to 1.2.1 contains an elevation of privilege vulnerability. A low privilege user with local access to the system could potentially exploit this vulnerability to delete arbitrary files and result in Denial of Service.

Related Vulnerabilities

CVE-2004-2778

HIGH
CVSS:7.1(High)

Ebuild in Gentoo may change directory and file permissions depending on the order of installed packages, which allows local users to read or write to restricted directories or execute restricted comma...

CWE-2642004

CVE-2014-2071

HIGH
CVSS:7.1(High)

Aruba Networks ClearPass Policy Manager 6.1.x, 6.2.x before 6.2.5.61640 and 6.3.x before 6.3.0.61712, when configured to use tunneled and non-tunneled EAP methods in a single policy construct, allows ...

CWE-2642014

CVE-2015-0266

HIGH
CVSS:7.1(High)

The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.

CWE-2642015

CVE-2015-8333

HIGH
CVSS:7.1(High)

The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 allows remote authenticated users to change the IP address of the media server via crafted packets.

CWE-2642015

CVE-2016-8357

HIGH
CVSS:7.1(High)

An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. A user with read-only access can send commands to the software and the application will accept those commands. This w...

CWE-2642016

CVE-2018-0092

HIGH
CVSS:7.1(High)

A vulnerability in the network-operator user role implementation for Cisco NX-OS System Software could allow an authenticated, local attacker to improperly delete valid user accounts. The network-oper...

CWE-2642018