Dell Edge Gateway 3200, versions prior to 15.40.30.2879, and Edge Gateway 5200, versions prior to 12.0.94.2380, contain an Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
History

Mon, 09 Dec 2024 15:15:00 +0000

Type Values Removed Values Added
Description Dell Edge Gateway 5200 (Coffee Lake S), versions prior to 12.0.94.2380, contains an Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure. Dell Edge Gateway 3200, versions prior to 15.40.30.2879, and Edge Gateway 5200, versions prior to 12.0.94.2380, contain an Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.

Mon, 25 Nov 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell edge Gateway 5200 Firmware
CPEs cpe:2.3:o:dell:edge_gateway_5200_firmware:*:*:*:*:*:*:*:*
Vendors & Products Dell
Dell edge Gateway 5200 Firmware
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 22 Nov 2024 03:15:00 +0000

Type Values Removed Values Added
Description Dell Edge Gateway 5200 (Coffee Lake S), versions prior to 12.0.94.2380, contains an Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
Weaknesses CWE-1421
References
Metrics cvssV3_1

{'score': 6.7, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2024-11-22T02:58:27.660Z

Updated: 2024-12-09T15:03:06.924Z

Reserved: 2024-06-13T14:41:01.525Z

Link: CVE-2024-38296

cve-icon Vulnrichment

Updated: 2024-11-25T18:20:33.374Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-22T03:15:04.160

Modified: 2024-12-09T15:15:13.993

Link: CVE-2024-38296

cve-icon Redhat

No data.