CVE Published: 01/08/2024 |
CVE Updated: 01/08/2024 |
CVE Year: 2024 Source: dell |
Vendor: Dell |
Product: iDRAC Service Module (iSM) Status : PUBLISHED
CVE-2024-38489 Description
Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service (partial) event.
Metrics
CVSS Version: 3.1 |
Base Score: 3.1 LOW Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L
l➤ Exploitability Metrics: Attack Vector (AV)* LOCAL Attack Complexity (AC)* LOW Privileges Required (PR)* HIGH User Interaction (UI)* REQUIRED Scope (S)* UNCHANGED