Lucene search
HistoryMar 27, 2024 - 11:15 a.m.
CVE-2024-25962
dell insightiq version 5.0
improper access control
remote attacker
unauthorized access
monitoring data
cve-2024-25962
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
9.0%
Dell InsightIQ, version 5.0, contains an improper access control vulnerability. A remote low privileged attacker could potentially exploit this vulnerability, leading to unauthorized access to monitoring data.
Related
cnvd
cnvd
Dell InsightIQ Access Control Error Vulnerability
2024-03-29 00:00:00
vulnrichment
vulnrichment
CVE-2024-25962
2024-03-27 10:37:43
cvelist
cvelist
CVE-2024-25962
2024-03-27 10:37:43
cve
cve
CVE-2024-25962
2024-03-27 11:15:46
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
AI Score
8.1
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-25962