CVE-2024-25944
CVSS 3.1 Score 5.7 of 10 (medium)
Details
Summary
CVE-2024-25944 is a newly disclosed vulnerability affecting Dell OpenManage Enterprise versions 4.0 and earlier. This issue involves a path traversal vulnerability, which means an unauthenticated remote attacker can potentially manipulate file requests to access unintended files stored on the server's filesystem. By exploiting this flaw, the attacker could gain unauthorized access to sensitive files with the privileges of the running web application. Successful exploitation could lead to significant data exposure or system compromise. It is crucial for organizations using the affected software to apply the necessary patches as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.