Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
History

Tue, 26 Nov 2024 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell data Domain Operating System
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*
Vendors & Products Dell
Dell data Domain Operating System

Fri, 08 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 08 Nov 2024 02:45:00 +0000

Type Values Removed Values Added
Description Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
Weaknesses CWE-200
References
Metrics cvssV3_1

{'score': 3.1, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2024-11-08T02:30:27.068Z

Updated: 2024-11-08T15:57:13.659Z

Reserved: 2024-10-08T05:40:53.868Z

Link: CVE-2024-48011

cve-icon Vulnrichment

Updated: 2024-11-08T15:57:10.000Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-08T03:15:04.160

Modified: 2024-11-26T02:12:04.277

Link: CVE-2024-48011

cve-icon Redhat

No data.