CVE-2024-37141

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an open redirect vulnerability. A remote low privileged attacker could potentially exploit this vulnerability, leading to information disclosure.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*

History

23 Sep 2024, 21:01

Type Values Removed Values Added
CPE cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*
Summary
  • (es) Dell PowerProtect DD, versiones anteriores a 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contienen una vulnerabilidad de redireccionamiento abierto. Un atacante remoto con pocos privilegios podría explotar esta vulnerabilidad, lo que llevaría a la divulgación de información.
First Time Dell
Dell data Domain Operating System
References () https://www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities - () https://www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities - Vendor Advisory

26 Jun 2024, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-26 04:15

Updated : 2024-09-23 21:01


NVD link : CVE-2024-37141

Mitre link : CVE-2024-37141

CVE.ORG link : CVE-2024-37141


JSON object : View

Products Affected

dell

  • data_domain_operating_system
CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')