Primary

Context

Dell AppSync Incorrect Permission Assignment Vulnerability Allowing Privilege Escalation

Vulnerability

Patched

A vulnerability has been identified in Dell AppSync version 4.6.0, related to incorrect permission assignments for critical resources. This flaw allows a low-privileged attacker with local access to potentially exploit the vulnerability, leading to unauthorized elevation of privileges.

Impact

Exploitation of this vulnerability could result in unauthorized access to elevated privileges, allowing a user to gain higher-level permissions or rights within the application or system.

Remediation

Users can upgrade to Dell AppSync version 4.6.1.0 or later to address this vulnerability. The update is available through the Dell Support website.

Added: Apr 1, 2026, 1:21 PM

Updated: Apr 1, 2026, 1:21 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

3.2

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

3.2

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell AppSync Incorrect Permission Assignment Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Dell AppSync

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating