CVE-2024-45761

Published: Dec 9, 2024Modified: Feb 4, 2025

8.1

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Exploitability: 2.8 / Impact: 5.2

Source: NVD

Description

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileged malicious user could potentially exploit this vulnerability to load any web plugins or Java class leading to the possibility of altering the behavior of certain apps/OS or Denial of Service.

Affected (1)

Products: Dell: Openmanage Server Administrator

1 product

Openmanage Server Administrator

Configuration A

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Dell Openmanage Server Administrator	Before 11.1.0.0

Running on/with	Platform Versions
Linux Linux Kernel	All versions
Microsoft Windows	All versions

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (1)

https://www.dell.com/support/kbdoc/en-us/000258320/dsa-2024-481-security-update-for-dell-openmanage-server-administrator-omsa-vulnerability

Source: security_alert@emc.com

Vendor Advisory

Timeline

No history available yet.