Dell ECS Privilege Elevation Vulnerability
CVE-2024-30473

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Ecs
Vendor: CVE Published:; 18 July 2024

What is CVE-2024-30473?

Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management. A remote high privileged attacker could potentially exploit this vulnerability, gaining access to unauthorized end points.

Affected Version(s)

ECS < 3.8.1.1

References

https://www.dell.com/support/kbdoc/en-us/000227051/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 18, 2024
Vulnerability Reserved
Mar 27, 2024