CVE-2024-38490

Name of the Vulnerable Software and Affected Versions Dell iDRAC Service Module versions 5.3.0.0 and prior

Description The issue is related to an out of bound write vulnerability. A privileged local attacker could execute arbitrary code, potentially resulting in a denial of service event. This vulnerability is associated with a buffer overflow in memory, which could allow an attacker to execute arbitrary code or cause a denial of service.

Recommendations For Dell iDRAC Service Module versions 5.3.0.0 and prior, update to a version later than 5.3.0.0 to resolve the issue. As a temporary workaround, consider restricting access to the service module to minimize the risk of exploitation.