CVE-2024-53289
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Dec 11, 2024
CWE ID 367
Summary
CVE-2024-53289 is a newly identified vulnerability affecting Dell ThinOS version 2408. This issue involves a Time-of-check Time-of-use (TOCTOU) Race Condition, which allows a low-privileged attacker with local access to potentially exploit the system. If successfully exploited, this vulnerability could result in significant privilege escalation for the attacker. This security flaw poses a significant risk, and Dell is strongly encouraged to release a patch or update as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share