2024-11-26
:
This article describes a critical vulnerability (CVE-2024-45759) affecting Dell PowerProtect Data Domain versions prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50. A local attacker with low privileges could exploit this vulnerability to gain escalated privileges, execute unauthorized commands, and potentially cause a denial-of-service (DoS) condition.
Vulnerability Details:
Platform: Dell PowerProtect Data Domain
Version: Prior to 8.1.0.0, 7.13.1.10, 7.10.1.40, and 7.7.5.50
Vulnerability: Escalation of Privilege (EoP)
Severity: Critical (CVSS score details not provided)
Date: November 7, 2024 (published), November 25, 2024 (last modified)
What Undercode
This article
It also
Recommendations:
Update Dell PowerProtect Data Domain to version 8.1.0.0 or later, 7.13.1.10 or later, 7.10.1.40 or later, or 7.7.5.50 or later as soon as possible.
Implement additional security measures to limit local attacker access and privilege escalation opportunities.
References:
Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help