Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Command Configure versions prior to 4.2.1 contain an uncontrolled search path vulnerability. A locally authenticated malicious user could exploit this vulnerability by creating a symlink to a target file, allowing the attacker to overwrite or corrupt a specified file on the system.
CVSS Information
N/A
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
Dell Command Configure 代码问题漏洞
Vulnerability Description
Dell Command Configure是美国戴尔(Dell)公司的一款能够为业务客户端平台提供配置功能的应用程序。该程序中包含用于配置多种BIOS功能的命令行界面和图形用户界面。 Dell Command Configure 4.2.1之前版本中存在代码问题漏洞。本地攻击者可通过创建指向目标文件的符号链接利用该漏洞覆盖或破坏系统上的指定文件。
CVSS Information
N/A
Vulnerability Type
N/A