CVE-2024-24908
CVSS V2 None
CVSS V3 None
Description
Dell PowerProtect DM5500 version 5.15.0.0 and prior contain an Arbitrary File Delete via Path Traversal vulnerability. A remote attacker with high privileges could potentially exploit this vulnerability to deletion of arbitrary files stored on the server filesystem.
Overview
- CVE ID
- CVE-2024-24908
- Assigner
- dell
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-08T15:48:07.079Z
- Last Modified Date
- 2024-06-04T17:43:38.768Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.dell.com/support/kbdoc/en-us/000224843/dsa-2024-083-security-update-for-dell-powerprotect-data-manager-appliance-for-multiple-vulnerabilities | vendor-advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-24908 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24908 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 04:20:56 | Added to TrackCVE |