Vulnerability Details CVE-2024-29177
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a disclosure of temporary sensitive information vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the reuse of disclosed information to gain unauthorized access to the application report.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.6%
CVSS Severity
CVSS v3 Score 2.7
References
- https://www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities
- https://www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities
Products affected by CVE-2024-29177
-
cpe:2.3:o:dell:data_domain_operating_system:-
-
cpe:2.3:o:dell:data_domain_operating_system:5.16.0.0
-
cpe:2.3:o:dell:data_domain_operating_system:7.0
-
cpe:2.3:o:dell:data_domain_operating_system:7.10.1.0
-
cpe:2.3:o:dell:data_domain_operating_system:7.11.0.0
-
cpe:2.3:o:dell:data_domain_operating_system:7.13
-
cpe:2.3:o:dell:data_domain_operating_system:7.7.1.0
-
cpe:2.3:o:dell:data_domain_operating_system:7.8.0.0