Vulnerability Description
Dell vApp Manager, versions prior to 9.2.4.9 contain a Command Injection Vulnerability. An authorized attacker could potentially exploit this vulnerability leading to an execution of an inserted command. Dell recommends customers to upgrade at the earliest opportunity.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Powermax Eem | 5978 |
| Dell | Solutions Enabler Virtual Appliance | < 9.2.4.6 |
| Dell | Unisphere For Powermax Virtual Appliance | < 9.2.4.9 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000223609/dsa-2024-108-dell-powermaxos-Vendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000223609/dsa-2024-108-dell-powermaxos-Vendor Advisory
FAQ
What is CVE-2024-25946?
CVE-2024-25946 is a vulnerability with a CVSS score of 7.2 (HIGH). Dell vApp Manager, versions prior to 9.2.4.9 contain a Command Injection Vulnerability. An authorized attacker could potentially exploit this vulnerability leading to an execution of an inserted comma...
How severe is CVE-2024-25946?
CVE-2024-25946 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-25946?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Powermax Eem, Dell Solutions Enabler Virtual Appliance, Dell Unisphere For Powermax Virtual Appliance.