portrait 相關的公開 CVE 漏洞與安全風險資訊,提供 CVSS、EPSS、公開時間與漏洞情報資料,協助評估潛在風險與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2025-53919 | An issue was discovered in the Portrait Dell Color Management application through 3.3.008 for Dell monitors, It creates a temporary folder, with weak permissions, during installation and uninstallation. A low-privileged attacker with local access could potentially exploit this, leading to elevation of privileges. | [email protected] | 7.8 | 0.10% | 2025-12-17 | 2026-06-17 |
| CVE-2025-53398 | The Portrait Dell Color Management application 3.3.8 for Dell monitors has Insecure Permissions, | [email protected] | 7.8 | 0.10% | 2025-12-17 | 2026-06-17 |
| CVE-2017-3210 | Applications developed using the Portrait Display SDK, versions 2.30 through 2.34, default to insecure configurations which allow arbitrary code execution. A number of applications developed using the Portrait Displays SDK do not use secure permissions when running. These applications run the component pdiservice.exe with NT AUTHORITY/SYSTEM permissions. This component is also read/writable by all Authenticated Users. This allows local authenticated attackers to run arbitrary code with SYSTEM pr | [email protected] | 7.8 | 0.91% | 2018-07-24 | 2026-06-16 |