CVE-2024-37143 – Dell PowerFlex Improper Link Resolution Before File Access RCE

12月 10, 2024
4:16 am

CVE ID : CVE-2024-37143

Published : Dec. 10, 2024, 3:15 a.m. | 1 hour, 1 minute ago

Description : Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versions prior to RCM 3.8.1.0 (for RCM 3.8.x train) and prior to RCM 3.7.6.0 (for RCM 3.7.x train), Dell PowerFlex custom node using PowerFlex Manager versions prior to 4.6.1.0, Dell InsightIQ versions prior to 5.1.1, and Dell Data Lakehouse versions prior to 1.2.0.0 contain an Improper Link Resolution Before File Access vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability to execute arbitrary code on the system.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-37143 – Dell PowerFlex Improper Link Resolution Before File Access RCE

Elvescore.io

Recent Posts

CVE-2023-7300 – Huawei Home Music System Path Traversal Vulnerability

CVE-2024-12943 – “CodeAstro House Rental Management System SQL Injection Vulnerability”

CVE-2024-12944 – CodeAstro House Rental Management System SQL Injection

CVE-2024-56433 – “Shadow Utilities Default Subuid Conflict Vulnerability”

CVE-2024-12941 – CodeAstro Blood Donor Management System SQL Injection Vulnerability

CVE-2024-12942 – 1000 Projects Portfolio Management System MCA SQL Injection Vulnerability

CVE-2024-37143 – Dell PowerFlex Improper Link Resolution Before File Access RCE

CVE-2024-37143 – Dell PowerFlex Improper Link Resolution Before File Access RCE