Vulnerability Details CVE-2024-25944
Dell OpenManage Enterprise, v4.0 and prior, contain(s) a path traversal vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, to gain unauthorized access to the files stored on the server filesystem, with the privileges of the running web application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.4%
CVSS Severity
CVSS v3 Score 5.7
References
- https://www.dell.com/support/kbdoc/en-us/000223623/dsa-2024-100-security-update-for-dell-openmanage-enterprise-path-traversal-sensitive-data-disclosure-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000223623/dsa-2024-100-security-update-for-dell-openmanage-enterprise-path-traversal-sensitive-data-disclosure-vulnerability
Products affected by CVE-2024-25944
-
cpe:2.3:a:dell:openmanage_enterprise:-
-
cpe:2.3:a:dell:openmanage_enterprise:3.1.0
-
cpe:2.3:a:dell:openmanage_enterprise:3.10
-
cpe:2.3:a:dell:openmanage_enterprise:3.5
-
cpe:2.3:a:dell:openmanage_enterprise:3.6.1
-
cpe:2.3:a:dell:openmanage_enterprise:3.8.4
-
cpe:2.3:a:dell:openmanage_enterprise:4.0