CVE-2024-38487 | THREATINT

Description

api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unintended actions.

PUBLISHED Reserved 2024-06-18 | Published 2026-06-16 | Updated 2026-06-16 | Assigner dell

HIGH: 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H

Problem types

CWE-269: Improper Privilege Management

Product status

Default status

unaffected

Any version before 7.0.520

affected

References

www.dell.com/...ltiple-third-party-component-vulnerabilities vendor-advisory

cve.org (CVE-2024-38487)

nvd.nist.gov (CVE-2024-38487)

Download JSON