CVE-2024-49600
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 9, 2024
CWE ID 284
Summary
CVE-2024-49600 is a vulnerability affecting Dell Power Manager (DPM) versions preceding 3.17. This issue involves inadequate access control, allowing a low-privileged attacker with local access to potentially exploit it. The consequence of a successful attack could result in code execution and a significant escalation of privileges. This vulnerability poses a serious risk to systems running outdated DPM versions. It is crucial for organizations to install the latest version of DPM or apply the necessary patches to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Dell Power Manager
Affected Vendors
- Dell Technologies, Inc.