CVE-2023-24572
CVE-2023-24572
In short
Dell Command | Integration Suite for System Center before version 6.4.0 allows a logged-in attacker to delete any folder on the system during the software uninstall process. This can disrupt system operations or destroy important data.
Technical detail
An arbitrary folder deletion vulnerability exists in Dell Command | Integration Suite for System Center (versions < 6.4.0) during uninstallation, exploitable by locally authenticated users. The vulnerability allows deletion of arbitrary directories, potentially impacting system integrity and data availability; mitigation requires upgrading to version 6.4.0 or later.
Summary generated and translated by AI from the official description.
Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. A locally authenticated malicious user may potentially exploit this vulnerability leading to arbitrary folder deletion.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Dell · Dell Command Integration Suite for System Center (DCIS)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →