Products
Dell OpenManage Enterprise
- 3.10
- 4.0
Source
security_alert@emc.com
Tags
CVE-2024-28978 details
Published : May 1, 2024, 4:15 a.m.
Last Modified : May 1, 2024, 1:02 p.m.
Last Modified : May 1, 2024, 1:02 p.m.
Description
Dell OpenManage Enterprise, versions 3.10 and 4.0, contains an Improper Access Control vulnerability. A high privileged remote attacker could potentially exploit this vulnerability, leading to unauthorized access to resources.
CVSS Score
1 | 2 | 3 | 4 | 5.2 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
CVSS Data
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
Base Score
5.2
Exploitability Score
Impact Score
Base Severity
MEDIUM
Vector String : CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
References
URL | Source |
---|---|
https://www.dell.com/support/kbdoc/en-us/000224641/dsa-2024-201-security-update-for-dell-openmanage-enterprise-vulnerability | security_alert@emc.com |
This website uses the NVD API, but is not approved or certified by it.