CVE-2024-37130

Name of the Vulnerable Software and Affected Versions Dell OpenManage Server Administrator versions 11.0.1.0 and prior

Description The issue is a Local Privilege Escalation vulnerability via XSL Hijacking. A local low-privileged malicious user could potentially exploit this vulnerability and escalate their privilege to the admin user, gaining full control of the machine. Exploitation may lead to a complete system compromise.

Recommendations For versions 11.0.1.0 and prior, update to a version later than 11.0.1.0 to resolve the issue. As a temporary workaround, consider restricting access to the XSL Hijacking functionality until a patch is available.