Article Number: 000224642
Medium
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2024-28979 | Dell OpenManage Enterprise, versions prior to 4.1.0, contains an XSS injection vulnerability in UI. A high privileged local attacker could potentially exploit this vulnerability, leading to JavaScript injection. | 5.1 | CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L |
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2024-28979 | Dell OpenManage Enterprise, versions prior to 4.1.0, contains an XSS injection vulnerability in UI. A high privileged local attacker could potentially exploit this vulnerability, leading to JavaScript injection. | 5.1 | CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L |
Product | Affected Versions | Remediated Versions | Link |
---|---|---|---|
Dell OpenManage Enterprise | Versions prior to 4.1.0 | 4.1.0 | Support for Dell OpenManage Enterprise | Dell US |
Product | Affected Versions | Remediated Versions | Link |
---|---|---|---|
Dell OpenManage Enterprise | Versions prior to 4.1.0 | 4.1.0 | Support for Dell OpenManage Enterprise | Dell US |
Dell would like to thank Stanislav Kravchenko for reporting this issue.
Revision | Date | Description |
---|---|---|
1.0 | 2024-04-30 | Initial release |
Dell OpenManage Enterprise
30 Apr 2024
Dell Security Advisory