CVE-2022-34373 HIGH

CVE-2022-34373

Vendor Dell
Product CPG SW
Published August 31, 2022
Last update September 16, 2024

CVSS base score

7.3/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Dell Command | Integration Suite for System Center, versions prior to 6.2.0, contains arbitrary file write vulnerability. A locally authenticated malicious user could potentially exploit this vulnerability in order to perform an arbitrary write as system.

Key dates

02Disclosure timeline

August 31, 2022 CVE published
September 16, 2024 Record updated