CVE-2024-49600

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 9, 2024
CWE ID 284

Summary

CVE-2024-49600 is a vulnerability affecting Dell Power Manager (DPM) versions preceding 3.17. This issue involves inadequate access control, allowing a low-privileged attacker with local access to potentially exploit it. The consequence of a successful attack could result in code execution and a significant escalation of privileges. This vulnerability poses a serious risk to systems running outdated DPM versions. It is crucial for organizations to install the latest version of DPM or apply the necessary patches to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Dell Power Manager

Affected Vendors

  • Dell Technologies, Inc.