CVE-2023-43081 — MEDIUM (4.0)

Q: How severe is CVE-2023-43081?

CVE-2023-43081 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-43081?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Powerprotect Agent For File System.

Vulnerability Description

PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default permissions vulnerability in ddfscon component. A low Privileged local attacker could potentially exploit this vulnerability, leading to overwriting of log files.

CVSS Score

4.0

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Dell	Powerprotect Agent For File System	<= 19.14

Related Weaknesses (CWE)

CWE-276

References

https://www.dell.com/support/kbdoc/en-us/000219782/dsa-2023-427-security-update-PatchVendor Advisory
https://www.dell.com/support/kbdoc/en-us/000219782/dsa-2023-427-security-update-PatchVendor Advisory

FAQ

What is CVE-2023-43081?

CVE-2023-43081 is a vulnerability with a CVSS score of 4.0 (MEDIUM). PowerProtect Agent for File System Version 19.14 and prior, contains an incorrect default permissions vulnerability in ddfscon component. A low Privileged local attacker could potentially exploit thi...

How severe is CVE-2023-43081?

CVE-2023-43081 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-43081?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Powerprotect Agent For File System.