漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
An Uncontrolled Search Path Vulnerability is applicable to the following: Dell Update Package (DUP) Framework file versions prior to 19.1.0.413, and Framework file versions prior to 103.4.6.69 used in Dell EMC Servers. Dell Update Package (DUP) Framework file versions prior to 3.8.3.67 used in Dell Client Platforms. The vulnerability is limited to the DUP framework during the time window when a DUP is being executed by an administrator. During this time window, a locally authenticated low privilege malicious user potentially could exploit this vulnerability by tricking an administrator into running a trusted binary, causing it to load a malicious DLL and allowing the attacker to execute arbitrary code on the victim system. The vulnerability does not affect the actual binary payload that the DUP delivers.
漏洞信息
N/A
漏洞
N/A
漏洞
Dell Update Package Framework 代码问题漏洞
漏洞信息
Dell Update Package(DUP)Framework是美国戴尔(Dell)公司的一款用于更新系统组件的框架。该产品主要提供驱动程序、应用程序、BIOS和固件的安装程序。 Dell DUP Framework文件中存在代码问题漏洞。本地攻击者可通过诱使管理员运行可信的库,进而加载恶意的DLL利用该漏洞在用户系统上执行任意代码。以下产品及版本受到影响:Dell Update Package (DUP) Framework file 19.1.0.413版本(Dell EMC Servers),1
漏洞信息
N/A
漏洞
N/A