CVE-2024-0155
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Mar 4, 2024
Updated: Jan 8, 2025
CWE ID 416
Summary
CVE-2024-0155 is a vulnerability affecting Dell Digital Delivery software versions prior to 5.2.0.0. This issue involves a Use After Free condition, which can be exploited by a local, low privileged attacker. By taking advantage of this flaw, an attacker could potentially cause the application to crash or gain unauthorized code execution. This vulnerability poses a significant risk if left unaddressed, and users are encouraged to update their software as soon as possible to mitigate the threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Dell Digital Delivery
Affected Vendors
- Dell Technologies, Inc.