CVE-2024-24902 | THREATINT

Description

Dell RecoverPoint for Virtual Machines 6.0.x contains an Improper access control vulnerability. A low privileged local attacker could potentially exploit this vulnerability leading to gaining access to unauthorized data for a limited time.

PUBLISHED Reserved 2024-02-01 | Published 2024-12-13 | Updated 2024-12-13 | Assigner dell

MEDIUM: 6.6CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Problem types

CWE-284: Improper Access Control

Product status

Default status

unaffected

6.0 SP1

affected

6.0 SP1 P1

affected

References

www.dell.com/...ltiple-third-party-component-vulnerabilities vendor-advisory

cve.org (CVE-2024-24902)

nvd.nist.gov (CVE-2024-24902)

Download JSON