CVE-2024-48008
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Dec 13, 2024
CWE ID 11
Summary
CVE-2024-48008 is a newly disclosed vulnerability affecting Dell RecoverPoint for Virtual Machines version 6.0.x. This issue allows a low-privileged remote attacker to inject operating system commands, potentially leading to information disclosure. The attacker could gain unauthorized access to sensitive files, resulting in potential data breaches or unintended actions within the affected environment. Organizations using this software are urged to apply the upcoming patches or workarounds to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Dell Technologies, Inc.