PT-2024-22782 · Dell · Dell Powerprotect Dd
Published
2024-06-26
·
Updated
2024-10-30
·
CVE-2024-29176
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Dell PowerProtect DD versions prior to 8.0
Dell PowerProtect DD versions 7.13.1.0
Dell PowerProtect DD versions 7.10.1.30
Dell PowerProtect DD versions 7.7.5.40
Description
The issue is related to an Out-of-bounds Write vulnerability, also described as a buffer overflow vulnerability. A low privileged attacker with remote access could potentially exploit this, leading to code execution or an application crash, and potentially allowing the execution of arbitrary code on the underlying operating system with the privileges of the vulnerable application.
Recommendations
For Dell PowerProtect DD version 8.0, update to a version that contains a fix for this issue.
For Dell PowerProtect DD version 7.13.1.0, update to a version that contains a fix for this issue.
For Dell PowerProtect DD version 7.10.1.30, update to a version that contains a fix for this issue.
For Dell PowerProtect DD version 7.7.5.40, update to a version that contains a fix for this issue.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Powerprotect Dd