Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-45760

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper access control vulnerability. A remote low privileged user could potentially exploit this vulnerability via the HTTP GET method leading to unauthorized action with elevated privileges.

Published

2024-12-09T17:15:08.830

Last Modified

2025-02-04T18:04:57.357

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Primary
CWE-862

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	dell	openmanage_server_administrator	< 11.1.0.0	Yes

References

https://www.dell.com/support/kbdoc/en-us/000258320/dsa-2024-481-security-update-for-dell-openmanage-server-administrator-omsa-vulnerability Mitigation, Vendor Advisory ([email protected])