Vulnerability Details CVE-2024-22460
Dell PowerProtect DM5500 version 5.15.0.0 and prior contains an insecure deserialization Vulnerability. A remote attacker with high privileges could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v3 Score 2.2
References
- https://www.dell.com/support/kbdoc/en-us/000224843/dsa-2024-083-security-update-for-dell-powerprotect-data-manager-appliance-for-multiple-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000224843/dsa-2024-083-security-update-for-dell-powerprotect-data-manager-appliance-for-multiple-vulnerabilities
Products affected by CVE-2024-22460
-
cpe:2.3:h:dell:dm5500:-
-
cpe:2.3:o:dell:dm5500_firmware:-
-
cpe:2.3:o:dell:dm5500_firmware:5.14.0.0
-
cpe:2.3:o:dell:dm5500_firmware:5.15.0.0