Vulnerability Description
This vulnerability allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
Related Weaknesses (CWE)
References
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/con
FAQ
What is CVE-2024-38494?
CVE-2024-38494 is a documented vulnerability. This vulnerability allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request.
How severe is CVE-2024-38494?
CVSS scoring is not yet available for CVE-2024-38494. Check NVD for updates.
Is there a patch for CVE-2024-38494?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.