CVE-2024-53292

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Dec 11, 2024
CWE ID 256

Summary

CVE-2024-53292 is a vulnerability affecting Dell VxVerify, with versions prior to x.40.405 being impacted. This issue involves a Plain-text Password Storage flaw in the shell wrapper. A local attacker, exploiting this weakness, could gain privileged access to the system and uncover specific user credentials in plain text. The compromised credentials could then be used by the attacker to access the vulnerable component with the corresponding account's privileges.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share