CVE-2023-28071

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).

Weakness

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Affected Software

Name	Vendor	Start Version	End Version
Alienware_update	Dell	*	4.9.0 (excluding)
Alienware_update	Dell	4.9.0-a01 (including)	4.9.0-a01 (including)
Command_update	Dell	*	4.9.0 (excluding)
Command_update	Dell	4.9.0-a01 (including)	4.9.0-a01 (including)
Update	Dell	*	4.9.0 (excluding)
Update	Dell	4.9.0-a01 (including)	4.9.0-a01 (including)

Potential Mitigations

Follow the principle of least privilege when assigning access rights to entities in a software system.
Denying access to a file can prevent an attacker from replacing that file with a link to a sensitive file. Ensure good compartmentalization in the system to provide protected areas that can be trusted.

References

https://www.dell.com/support/kbdoc/en-us/000213546/dsa-2023-170-dell-command-update

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-28071
CWE	https://cwe.mitre.org/data/definitions/59.html

Improper Link Resolution Before File Access ('Link Following')

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References