CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-28976

Dell Repository Manager, versions prior to 3.4.5, contains a Path Traversal vulnerability in API module. A local attacker with low privileges could potentially exploit this vulnerability to gain unauthorized write access to the files stored on the server filesystem with the privileges of the running web application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.7%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2024-28976

Dell » Repository Manager » Version: 1.1.52

cpe:2.3:a:dell:repository_manager:1.1.52
Dell » Repository Manager » Version: 1.2.155

cpe:2.3:a:dell:repository_manager:1.2.155
Dell » Repository Manager » Version: 1.3.124

cpe:2.3:a:dell:repository_manager:1.3.124
Dell » Repository Manager » Version: 3.4.2

cpe:2.3:a:dell:repository_manager:3.4.2
Dell » Repository Manager » Version: 3.4.3

cpe:2.3:a:dell:repository_manager:3.4.3
Dell » Repository Manager » Version: 3.4.4

cpe:2.3:a:dell:repository_manager:3.4.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-28976

Products

Pricing

Contact Us