CVE-2024-53290

CVSS 3.1 Score 8.4 of 10 (high)

Details

Published Dec 11, 2024
CWE ID 77

Summary

CVE-2024-53290 is a command injection vulnerability affecting Dell ThinOS version 2408. An attacker with local access can exploit this issue by introducing special characters into input fields, leading to the execution of arbitrary commands. This vulnerability can result in significant security risks, including potential system takeover and data theft. Unauthenticated attackers can exploit this flaw, making it a serious concern for organizations using Dell ThinOS 2408. It is crucial that users apply the necessary patches or upgrades to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share