exploitDog

CVE-2024-53290

Опубликовано: 11 дек. 2024

Источник: nvd

CVSS3: 8.4

EPSS Низкий

Описание

Dell ThinOS version 2408 contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Command execution

Ссылки

https://www.dell.com/support/kbdoc/en-us/000248475/dsa-2024-463
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:dell:thinos:2408:*:*:*:*:*:*:*

EPSS

Процентиль: 78%

0.01171

Низкий

8.4 High

CVSS3

Дефекты

CWE-77

Связанные уязвимости

GHSA-rq4h-wrjf-38w8

CVSS3: 8.4

github

около 1 года назад

Dell ThinOS version 2408 contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Command execution

EPSS

Процентиль: 78%

0.01171

Низкий

8.4 High

CVSS3

Дефекты

CWE-77