Vulnerability-Lookup

CNVD-2024-34485

Vulnerability from cnvd - Published: 2024-08-05

Title

Dell Peripheral Manager不受控搜索路径元素漏洞（CNVD-2024-34485）

Description

Dell Peripheral Manager是美国戴尔（Dell）公司的一个应用软件。提供了有关如何通过蓝牙将其他设备与计算机配对的屏幕说明。 Dell Peripheral Manager 1.7.6之前版本存在不受控搜索路径元素漏洞，攻击者可利用该漏洞通过预加载恶意DLL或符号链接，导致任意代码执行和权限提升。

Severity

中

Patch Name

Dell Peripheral Manager不受控搜索路径元素漏洞（CNVD-2024-34485）的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.dell.com/support/kbdoc/en-us/000225474/dsa-2024-242

Reference

https://cxsecurity.com/cveshow/CVE-2024-32857/

Impacted products

Name
Dell Peripheral Manager <1.7.6

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-32857"
    }
  },
  "description": "Dell Peripheral Manager\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\u63d0\u4f9b\u4e86\u6709\u5173\u5982\u4f55\u901a\u8fc7\u84dd\u7259\u5c06\u5176\u4ed6\u8bbe\u5907\u4e0e\u8ba1\u7b97\u673a\u914d\u5bf9\u7684\u5c4f\u5e55\u8bf4\u660e\u3002\n\nDell Peripheral Manager 1.7.6\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4e0d\u53d7\u63a7\u641c\u7d22\u8def\u5f84\u5143\u7d20\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u9884\u52a0\u8f7d\u6076\u610fDLL\u6216\u7b26\u53f7\u94fe\u63a5\uff0c\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u548c\u6743\u9650\u63d0\u5347\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.dell.com/support/kbdoc/en-us/000225474/dsa-2024-242",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-34485",
  "openTime": "2024-08-05",
  "patchDescription": "Dell Peripheral Manager\u662f\u7f8e\u56fd\u6234\u5c14\uff08Dell\uff09\u516c\u53f8\u7684\u4e00\u4e2a\u5e94\u7528\u8f6f\u4ef6\u3002\u63d0\u4f9b\u4e86\u6709\u5173\u5982\u4f55\u901a\u8fc7\u84dd\u7259\u5c06\u5176\u4ed6\u8bbe\u5907\u4e0e\u8ba1\u7b97\u673a\u914d\u5bf9\u7684\u5c4f\u5e55\u8bf4\u660e\u3002\r\n\r\nDell Peripheral Manager 1.7.6\u4e4b\u524d\u7248\u672c\u5b58\u5728\u4e0d\u53d7\u63a7\u641c\u7d22\u8def\u5f84\u5143\u7d20\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u9884\u52a0\u8f7d\u6076\u610fDLL\u6216\u7b26\u53f7\u94fe\u63a5\uff0c\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u548c\u6743\u9650\u63d0\u5347\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Dell Peripheral Manager\u4e0d\u53d7\u63a7\u641c\u7d22\u8def\u5f84\u5143\u7d20\u6f0f\u6d1e\uff08CNVD-2024-34485\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Dell Peripheral Manager \u003c1.7.6"
  },
  "referenceLink": "https://cxsecurity.com/cveshow/CVE-2024-32857/",
  "serverity": "\u4e2d",
  "submitTime": "2024-08-01",
  "title": "Dell Peripheral Manager\u4e0d\u53d7\u63a7\u641c\u7d22\u8def\u5f84\u5143\u7d20\u6f0f\u6d1e\uff08CNVD-2024-34485\uff09"
}

CVE-2024-32857 (GCVE-0-2024-32857)

Vulnerability from cvelistv5 – Published: 2024-07-31 08:37 – Updated: 2024-08-01 17:48

Summary

Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege

Severity ?

7.3 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-427 - Uncontrolled Search Path Element

Assigner

dell

References

URL

Tags

https://www.dell.com/support/kbdoc/en-us/00022547…

vendor-advisory

Impacted products

	Vendor	Product	Version
	Dell	Dell Peripheral Manager	Affected: N/A , < 1.7.6 (semver)

Credits

Dell Technologies would like to thank Ouallaout Noureddine for reporting these issues

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:dell:peripheral_manager:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "peripheral_manager",
            "vendor": "dell",
            "versions": [
              {
                "lessThan": "1.7.6",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-32857",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-01T17:46:38.038790Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-01T17:48:37.004Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Dell Peripheral Manager",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.7.6",
              "status": "affected",
              "version": "N/A",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Dell Technologies would like to thank Ouallaout Noureddine for reporting these issues"
        }
      ],
      "datePublic": "2024-07-30T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability.  An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege"
            }
          ],
          "value": "Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability.  An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-427",
              "description": "CWE-427: Uncontrolled Search Path Element",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-07-31T08:37:41.665Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000225474/dsa-2024-242"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2024-32857",
    "datePublished": "2024-07-31T08:37:41.665Z",
    "dateReserved": "2024-04-19T09:34:13.527Z",
    "dateUpdated": "2024-08-01T17:48:37.004Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2024-34485

CVE-2024-32857 (GCVE-0-2024-32857)

Tags

Sightings

Nomenclature