Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-45764

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. This is a critical severity vulnerability so Dell recommends customers to upgrade at the earliest opportunity.

Published

2024-11-08T16:15:23.070

Last Modified

2024-11-13T19:08:29.580

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.0 (CRITICAL)

Weaknesses
  • Type: Secondary
    CWE-304
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System dell enterprise_sonic_distribution < 4.1.6 Yes
Operating System dell enterprise_sonic_distribution < 4.2.2 Yes
References