Improper Access Control Vulnerability in Dell OS Recovery Tool

Improper Access Control Vulnerability in Dell OS Recovery Tool

CVE-2023-28066 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control Vulnerability. A local authenticated non-administrator user could potentially exploit this vulnerability in order to elevate privileges on the system.

Learn more about our User Device Pen Test.