CVE-2023-32479: 
Dell Security Management Server vulnerability analysis and mitigation

Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain a privilege escalation vulnerability (CVE-2023-32479) due to improper ACL of the non-default installation directory. The vulnerability was disclosed in February 2024 and affects multiple Dell security products (Dell Advisory).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 HIGH by NVD with vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, while Dell assigned it a score of 6.7 MEDIUM with vector string CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H. The vulnerability is classified as CWE-284 (Improper Access Control) (NVD).

A local malicious user could potentially exploit this vulnerability by replacing binaries in the installed directory and taking reverse shell of the system, leading to privilege escalation (Dell Advisory).

Dell has released version 11.9.0 or later for all affected products as a fix for this vulnerability. Users are advised to update to the latest version of Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server (Dell Advisory).