CVE-2024-47476

Published: Dec 3, 2024Modified: Feb 3, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Dell NetWorker Management Console, version(s) 19.11, contain(s) an Improper Verification of Cryptographic Signature vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Code execution.

Affected (1)

Products: Dell: Networker Management Console

Dell

1 product

Networker Management Console

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Dell Networker Management Console	Version 8.0.22

Related CWEs

CWE-347

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

References (1)

https://www.dell.com/support/kbdoc/en-us/000255884/dsa-2024-477-security-update-for-dell-networker-runtime-environment-nre-multiple-component-vulnerabilities

Source: security_alert@emc.com

Vendor Advisory

Timeline

No history available yet.