CVE-2024-53292
CVSS 3.1 Score 7.2 of 10 (high)
Details
Published Dec 11, 2024
CWE ID 256
Summary
CVE-2024-53292 is a vulnerability affecting Dell VxVerify, with versions prior to x.40.405 being impacted. This issue involves a Plain-text Password Storage flaw in the shell wrapper. A local attacker, exploiting this weakness, could gain privileged access to the system and uncover specific user credentials in plain text. The compromised credentials could then be used by the attacker to access the vulnerable component with the corresponding account's privileges.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share