Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell Common Event Enabler, version 8.9.10.0 and prior, contain an insecure deserialization vulnerability in CAVATools. A local unauthenticated attacker could potentially exploit this vulnerability, leading to arbitrary code execution in the context of the logged in user. Exploitation of this issue requires a victim to open a malicious file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
Dell Common Event Enabler 代码问题漏洞
Vulnerability Description
Dell Common Event Enabler是美国戴尔(Dell)公司的一个框架。 Dell Common Event Enabler 8.9.10.0 及之前版本存在代码问题漏洞,该漏洞源于CAVATools 中存在不安全的反序列化,允许本地未经身份验证的攻击者在登录用户的环境中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A