Article Number: 000219185
DSA-2023-414: Security Update for a Dell Pair Vulnerability
Summary: Dell Pair remediation is available for an elevation of privilege vulnerability that could be exploited by malicious users to compromise the affected system during installation.
Article Content
Impact
Medium
Details
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
|---|---|---|---|
| CVE-2023-44281 | Dell Pair Installer version prior to 1.2.1 contains an elevation of privilege vulnerability. A low privilege user with local access to the system could potentially exploit this vulnerability to delete arbitrary files and result in Denial of Service. | 6.6 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H |
| Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
|---|---|---|---|
| CVE-2023-44281 | Dell Pair Installer version prior to 1.2.1 contains an elevation of privilege vulnerability. A low privilege user with local access to the system could potentially exploit this vulnerability to delete arbitrary files and result in Denial of Service. | 6.6 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H |
Affected Products and Remediation
| Product | Software/Firmware | Affected Versions | Remediated Versions | BIOS Release Date (MM/DD/YYYY) | Link |
|---|---|---|---|---|---|
| Dell Pair | Software | Versions prior to 1.2.1 | 1.2.1 or later | 01/23/2024 | Go to the Drivers & Downloads site for updates |
| Product | Software/Firmware | Affected Versions | Remediated Versions | BIOS Release Date (MM/DD/YYYY) | Link |
|---|---|---|---|---|---|
| Dell Pair | Software | Versions prior to 1.2.1 | 1.2.1 or later | 01/23/2024 | Go to the Drivers & Downloads site for updates |
Revision History
| Revision | Date | Description |
|---|---|---|
| 1.0 | 2024-01-23 | Initial Release |
Related Information
Legal Information
Article Properties
Affected Product
Dell Pair
Last Published Date
23 Jan 2024
Article Type
Dell Security Advisory