CVE-2024-28976
CVSS V2 None
CVSS V3 None
Description
Dell Repository Manager, versions prior to 3.4.5, contains a Path Traversal vulnerability in API module. A local attacker with low privileges could potentially exploit this vulnerability to gain unauthorized write access to the files stored on the server filesystem with the privileges of the running web application.
Overview
- CVE ID
- CVE-2024-28976
- Assigner
- dell
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-04-24T08:01:53.090Z
- Last Modified Date
- 2024-04-24T08:01:53.090Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://www.dell.com/support/kbdoc/en-us/000224412/dsa-2024-189-security-update-for-dell-repository | vendor-advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-28976 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-28976 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-26 07:30:23 | Added to TrackCVE |