Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2024
CVE-2023-32454
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service
CVSS Score
6.3
EPSS Score
0.0
Published
2024-02-06
CVE-2023-32451
Dell Display Manager application, version 2.1.1.17, contains a vulnerability that low privilege user can execute malicious code during installation and uninstallation
CVSS Score
7.3
EPSS Score
0.0
Published
2024-02-06
CVE-2023-28063
Dell BIOS contains a Signed to Unsigned Conversion Error vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to denial of service.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-02-06
CVE-2024-22433
Dell Data Protection Search 19.2.0 and above contain an exposed password opportunity in plain text when using LdapSettings.get_ldap_info in DP Search. A remote unauthorized unauthenticated attacker could potentially exploit this vulnerability leading to a loss of Confidentiality, Integrity, Protection, and remote takeover of the system. This is a high-severity vulnerability as it allows an attacker to take complete control of DP Search to affect downstream protected devices.
CVSS Score
8.8
EPSS Score
0.002
Published
2024-02-06
CVE-2023-52239
The XML parser in Magic xpi Integration Platform 4.13.4 allows XXE attacks, e.g., via onItemImport.
CVSS Score
6.5
EPSS Score
0.002
Published
2024-02-06
CVE-2023-28049
Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion vulnerability. A locally authenticated malicious user may exploit this vulnerability in order to perform a privileged arbitrary file delete.
CVSS Score
4.7
EPSS Score
0.0
Published
2024-02-06
CVE-2023-25543
Dell Power Manager, versions prior to 3.14, contain an Improper Authorization vulnerability in DPM service. A low privileged malicious user could potentially exploit this vulnerability in order to elevate privileges on the system.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-02-06
CVE-2023-43535
Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE event trigger.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-02-06
CVE-2023-43536
Transient DOS while parse fils IE with length equal to 1.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-02-06
CVE-2023-43522
Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-02-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved