Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
CWE-1386
Vulnerability Title
Dell Update Package(DUP)Framework 后置链接漏洞
Vulnerability Description
Dell Update Package(DUP)Framework是美国戴尔(Dell)公司的一款用于更新系统组件的框架。该产品主要提供驱动程序、应用程序、BIOS和固件的安装程序。 Dell Update Package(DUP)Framework 4.9.4.36版本及之前版本存在安全漏洞。攻击者利用该漏洞可以创建任意文件,从而导致系统拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A