Vulnerability Details CVE-2024-25944
Dell OpenManage Enterprise, v4.0 and prior, contain(s) a path traversal vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, to gain unauthorized access to the files stored on the server filesystem, with the privileges of the running web application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.2%
CVSS Severity
CVSS v3 Score 5.7
References
- https://www.dell.com/support/kbdoc/en-us/000223623/dsa-2024-100-security-update-for-dell-openmanage-enterprise-path-traversal-sensitive-data-disclosure-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000223623/dsa-2024-100-security-update-for-dell-openmanage-enterprise-path-traversal-sensitive-data-disclosure-vulnerability
Products affected by CVE-2024-25944
-
cpe:2.3:a:dell:openmanage_enterprise:-
-
cpe:2.3:a:dell:openmanage_enterprise:3.1.0
-
cpe:2.3:a:dell:openmanage_enterprise:3.10
-
cpe:2.3:a:dell:openmanage_enterprise:3.5
-
cpe:2.3:a:dell:openmanage_enterprise:3.6.1
-
cpe:2.3:a:dell:openmanage_enterprise:3.8.4
-
cpe:2.3:a:dell:openmanage_enterprise:4.0