CVE-2024-37135
First published: Wed Jul 31 2024(Updated: )
DM5500 5.16.0.0, contains an information disclosure vulnerability. A local attacker with high privileges could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Dell DM5500 | <5.17.0.0 | |
| Dell Dm5500 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-37135?
CVE-2024-37135 has been classified as a significant information disclosure vulnerability.
How do I fix CVE-2024-37135?
To mitigate CVE-2024-37135, upgrade the DM5500 firmware to version 5.17.0.0 or later.
Who is affected by CVE-2024-37135?
CVE-2024-37135 affects users of Dell DM5500 devices running firmware version 5.16.0.0 or earlier.
What could an attacker do with CVE-2024-37135?
An attacker exploiting CVE-2024-37135 could potentially disclose user credentials and gain unauthorized access to the application.
Is there a patch available for CVE-2024-37135?
Yes, Dell has released a security update that addresses CVE-2024-37135 by providing a firmware upgrade.
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/event
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/dell
- canonical/dell dm5500
- canonical/dell dm5500 firmware