CVE-2024-0155

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 4, 2024
Updated: Jan 8, 2025
CWE ID 416

Summary

CVE-2024-0155 is a vulnerability affecting Dell Digital Delivery software versions prior to 5.2.0.0. This issue involves a Use After Free condition, which can be exploited by a local, low privileged attacker. By taking advantage of this flaw, an attacker could potentially cause the application to crash or gain unauthorized code execution. This vulnerability poses a significant risk if left unaddressed, and users are encouraged to update their software as soon as possible to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Dell Digital Delivery

Affected Vendors

  • Dell Technologies, Inc.