PowerProtect DD Vulnerability Could Lead to Escalation of Privilege

CVE-2024-48010

7.2HIGH

Key Information

Vendor
Dell
Status
Powerprotect Dd
Vendor
CVE Published:
8 November 2024

Summary

Dell PowerProtect DD, versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50, contains an access control vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to escalation of privilege on the application.

Affected Version(s)

PowerProtect DD <= 8.0.0.0

PowerProtect DD < 7.13.1.10

PowerProtect DD < 7.10.1.40

References

https://www.dell.com/support/kbdoc/en-us/000245360/dsa-20...
vendor-advisory

CVSS V3.1

Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.