CVE-2024-48008

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 13, 2024
CWE ID 11

Summary

CVE-2024-48008 is a newly disclosed vulnerability affecting Dell RecoverPoint for Virtual Machines version 6.0.x. This issue allows a low-privileged remote attacker to inject operating system commands, potentially leading to information disclosure. The attacker could gain unauthorized access to sensitive files, resulting in potential data breaches or unintended actions within the affected environment. Organizations using this software are urged to apply the upcoming patches or workarounds to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share