Vulnerability Description
Dell Data Protection Advisor, version(s) 19.9, contain(s) an Inadequate Encryption Strength vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Data Protection Advisor | >= 19.5, < 19.9 |
| Dell | Dp4400 Firmware | <= 2.7.6 |
| Dell | Dp4400 | - |
| Dell | Dp5900 Firmware | <= 2.7.6 |
| Dell | Dp5900 | - |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000225088/dsa-2024-192-security-update-Vendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000225088/dsa-2024-192-security-update-Vendor Advisory
FAQ
What is CVE-2024-28974?
CVE-2024-28974 is a vulnerability with a CVSS score of 7.6 (HIGH). Dell Data Protection Advisor, version(s) 19.9, contain(s) an Inadequate Encryption Strength vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, le...
How severe is CVE-2024-28974?
CVE-2024-28974 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-28974?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Data Protection Advisor, Dell Dp4400 Firmware, Dell Dp4400, Dell Dp5900 Firmware, Dell Dp5900.