CVE-2023-43078 MEDIUM

CVE-2023-43078

Vendor Dell
Product Dell Client Platform, Dell Dock Firmware
Weakness CWE-59
Published August 28, 2024
Last update August 28, 2024

CVSS base score

6.7/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Dell Dock Firmware and Dell Client Platform contain an Improper Link Resolution vulnerability during installation resulting in arbitrary folder deletion, which could lead to Privilege Escalation or Denial of Service.

Key dates

02Disclosure timeline

August 28, 2024 CVE published
August 28, 2024 Record updated