Hard-Coded Credentials Vulnerability in Dell RecoverPoint for Virtual Machines
CVE-2024-48007
9.8CRITICAL
Key Information:
- Vendor
Dell
- Vendor
- CVE Published:
- 13 December 2024
What is CVE-2024-48007?
Dell RecoverPoint for Virtual Machines 6.0.x is vulnerable to unauthorized access due to hard-coded credentials. This flaw allows a remote attacker, who has access to the source code, to retrieve sensitive secrets easily. Once exploited, this can lead to unauthorized access to the system and sensitive data, raising significant security concerns for the affected users.
Affected Version(s)
RecoverPoint for Virtual Machines 6.0 SP1
RecoverPoint for Virtual Machines 6.0 SP1 P1