Vulnerability Details CVE-2024-28974
Dell Data Protection Advisor, version(s) 19.9, contain(s) an Inadequate Encryption Strength vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.0%
CVSS Severity
CVSS v3 Score 7.6
References
- https://www.dell.com/support/kbdoc/en-us/000225088/dsa-2024-192-security-update-for-data-protection-advisor-and-powerprotect-dp-series-appliance-idpa-for-multiple-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000225088/dsa-2024-192-security-update-for-data-protection-advisor-and-powerprotect-dp-series-appliance-idpa-for-multiple-vulnerabilities
Products affected by CVE-2024-28974
-
cpe:2.3:a:dell:data_protection_advisor:19.5
-
cpe:2.3:h:dell:dp4400:-
-
cpe:2.3:h:dell:dp5900:-
-
cpe:2.3:o:dell:dp4400_firmware:2.5
-
cpe:2.3:o:dell:dp4400_firmware:2.6
-
cpe:2.3:o:dell:dp4400_firmware:2.7
-
cpe:2.3:o:dell:dp4400_firmware:2.7.6
-
cpe:2.3:o:dell:dp5900_firmware:2.5
-
cpe:2.3:o:dell:dp5900_firmware:2.6
-
cpe:2.3:o:dell:dp5900_firmware:2.7
-
cpe:2.3:o:dell:dp5900_firmware:2.7.6