← Back

CVE-2024-39576

nvd nist
Published: Aug 22, 2024Modified: Nov 26, 2024

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Exploitability: 2.0 / Impact: 6.0
Source: NVD

Description

Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges.

Affected (1)

Products: Dell: Power Manager
Dell
1 product
Power Manager
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Power Manager
Before 3.16.0

Related CWEs

CWE-266
Incorrect Privilege Assignment
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.

References (1)

Source: security_alert@emc.com
Vendor Advisory

Timeline

No history available yet.