cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-28964,https://securityvulnerability.io/vulnerability/CVE-2024-28964,Insecure Deserialization Vulnerability in Dell Common Event Enabler,"The vulnerability in the Dell Common Event Enabler, specifically in the CAVATools component, arises from insecure deserialization practices. This flaw allows a local unauthenticated attacker to exploit the system potentially, as it can lead to arbitrary code execution within the context of the user currently logged in. Successful exploitation necessitates that the targeted user opens a specially crafted file, enabling the attacker to manipulate the execution environment.",Dell,Common Event Enabler,7.8,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-06-12T15:15:00.000Z,0
CVE-2023-32477,https://securityvulnerability.io/vulnerability/CVE-2023-32477,Improper Access Control Vulnerability in Dell Common Event Enabler,"The Dell Common Event Enabler, specifically version 8.9.8.2 for Windows and earlier releases, suffers from an improper access control vulnerability. A low-privileged local user could exploit this flaw to elevate their privileges, potentially compromising system integrity and allowing unauthorized access to sensitive functions and information. This vulnerability underscores the importance of maintaining strict access control measures and ensuring timely updates to safeguard against potential exploits.",Dell,Common Event Enabler,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-09-29T08:15:00.000Z,0