Lucene search

CVE-2024-37140

🗓️ 26 Jun 2024 04:13:15Reported by dellType

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain OS command injection vulnerability in admin operation, leading to potential system take over by remote attacke

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Cvelist	CVE-2024-37140	26 Jun 202403:54	–	cvelist
Vulnrichment	CVE-2024-37140	26 Jun 202403:54	–	vulnrichment
CNVD	Dell PowerProtect Data Domain OS Command Injection Vulnerability (CNVD-2024-31085)	26 Jun 202400:00	–	cnvd
NVD	CVE-2024-37140	26 Jun 202404:15	–	nvd

Nvd

Vulners

Vulnrichment

Node

dell data_domain_operating_systemRange<7.7.5.40

dell data_domain_operating_systemRange7.8.0.0–7.10.1.30

dell data_domain_operating_systemRange7.11.0.0–7.13.1.0

[
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect DD",
    "vendor": "Dell",
    "versions": [
      {
        "lessThanOrEqual": "7.13",
        "status": "affected",
        "version": "7.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2.7.7",
        "status": "affected",
        "version": "N/A",
        "versionType": "semver"
      },
      {
        "lessThan": "5.16.0.0",
        "status": "affected",
        "version": "N/A",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
dell	www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jun 2024 04:15Current

7.7High risk

Vulners AI Score7.7

CVSS38.8

EPSS0.01449

SSVC

CWE-78