cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-48838,https://securityvulnerability.io/vulnerability/CVE-2024-48838,Dell SmartFabric OS10 Software Vulnerable to External Access to Files or Directories,"The Dell SmartFabric OS10 Software has a vulnerability that permits low privileged attackers with local access to potentially gain access to sensitive files or directories on the filesystem. This flaw poses a notable security risk as it enables unauthorized individuals to exploit weaknesses in the system's access controls, potentially compromising the integrity and confidentiality of the data stored. It is crucial for users of the affected software versions to assess their exposure and implement necessary security measures to mitigate the risks associated with this vulnerability.",Dell,Smartfabric Os10 Software,3.3,LOW,0.0004299999854993075,false,false,false,false,,false,false,2024-11-12T03:36:39.510Z,0
CVE-2024-48837,https://securityvulnerability.io/vulnerability/CVE-2024-48837,Dell SmartFabric OS10 Software Vulnerability - Execution with Unnecessary Privileges,"The vulnerability in Dell SmartFabric OS10 Software versions 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x allows low privileged attackers with local access to exploit the system. This exploitation may lead to execution of arbitrary commands, posing a significant risk to the integrity and confidentiality of the network infrastructure. Security measures should be prioritized to mitigate the potential impacts of this vulnerability to ensure safe network operations.",Dell,Smartfabric Os10 Software,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-12T03:31:57.900Z,0
CVE-2024-49557,https://securityvulnerability.io/vulnerability/CVE-2024-49557,Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability,"Dell SmartFabric OS10 Software versions 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x are affected by a command injection vulnerability that arises from improper neutralization of special elements used in command execution. This flaw allows a low privileged attacker with local access to potentially exploit the system, which may lead to arbitrary code execution. Proper security measures and updates are crucial to mitigate risks associated with this vulnerability. For detailed information, refer to the vendor's advisory available at Dell's support site.",Dell,Smartfabric Os10 Software,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-12T03:26:43.287Z,0
CVE-2024-49558,https://securityvulnerability.io/vulnerability/CVE-2024-49558,Dell SmartFabric OS10 Software Vulnerability: Elevation of Privileges Attack vector,"The Dell SmartFabric OS10 Software presents a vulnerability associated with improper privilege management across several versions. This issue allows a low privileged attacker with local access to potentially exploit the vulnerability, facilitating the elevation of privileges. Security practitioners must take action to mitigate risks associated with this vulnerability to protect sensitive data and system integrity. Dell has provided a security advisory detailing available updates and recommendations for remediation.",Dell,Smartfabric Os10 Software,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-12T03:22:02.680Z,0
CVE-2024-49560,https://securityvulnerability.io/vulnerability/CVE-2024-49560,Dell SmartFabric OS10 Software Vulnerable to Command Injection Attacks,"The command injection vulnerability in Dell SmartFabric OS10 Software allows low-privileged attackers with local access to execute arbitrary commands on the affected system. This weakness exists in specific versions of the software, including 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x. Exploitation of this vulnerability may result in unauthorized command execution, potentially compromising the integrity and security of the system. Users are advised to review the security advisory from Dell for further details and necessary updates.",Dell,Smartfabric Os10 Software,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-11-12T03:17:10.537Z,0
CVE-2024-39577,https://securityvulnerability.io/vulnerability/CVE-2024-39577,Dell SmartFabric OS10 Software: Command Injection Vulnerability Could Lead to Code Execution,"A vulnerability in Dell SmartFabric OS10 Software allows low privileged attackers with remote access to exploit an improper neutralization of special elements used in a command, commonly known as command injection. This could potentially lead to unauthorized code execution, posing significant security risks to networks utilizing the affected versions. It is crucial for users to be aware of this vulnerability and apply recommended patches or updates to mitigate potential exploits.",Dell,Smartfabric Os10 Software,8.8,HIGH,0.0004900000058114529,false,false,false,false,,false,false,2024-09-26T17:06:24.453Z,0
CVE-2024-37125,https://securityvulnerability.io/vulnerability/CVE-2024-37125,Dell SmartFabric OS10 Software Vulnerable to Denial of Service Attacks,"Dell SmartFabric OS10 Software versions 10.5.6.x, 10.5.5.x, 10.5.4.x, and 10.5.3.x contain an Uncontrolled Resource Consumption vulnerability. This security flaw can be exploited by a remote unauthenticated host, potentially resulting in a denial of service condition. Proper measures should be taken to mitigate this vulnerability to ensure the integrity and availability of affected systems.",Dell,Smartfabric Os10 Software,7.5,HIGH,0.0004600000102072954,false,false,false,false,,false,false,2024-09-26T17:01:00.882Z,0
CVE-2024-39585,https://securityvulnerability.io/vulnerability/CVE-2024-39585,Low Privileged Attacker Could Exploit Hard-coded Password Vulnerability,"The vulnerability identified in Dell SmartFabric OS10 Software arises from the use of hard-coded passwords, impacting versions 10.5.5.4 through 10.5.5.10 and 10.5.6.x. This flaw creates an opportunity for low privileged attackers with remote access to exploit the system. Successful exploitation could result in client-side request forgery, enabling unauthorized operations and potentially leading to information disclosure. Users of the affected versions should take immediate action to secure their systems against this vulnerability.",Dell,Smartfabric Os10 Software,8.1,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-09-06T04:18:27.225Z,0
CVE-2024-38486,https://securityvulnerability.io/vulnerability/CVE-2024-38486,Dell SmartFabric OS10 Software Vulnerable to Command Injection Attacks,"Dell SmartFabric OS10 Software versions 10.5.5.4 to 10.5.5.10 and 10.5.6.x are susceptible to a command injection vulnerability due to improper neutralization of specialized elements used in command input. This flaw allows a low privileged remote attacker to manipulate commands and potentially execute unauthorized actions on affected systems. It poses a serious risk to the integrity and security of network operations, necessitating prompt attention and remediation measures.",Dell,Smartfabric Os10 Software,8.8,HIGH,0.0004900000058114529,false,false,false,false,,false,false,2024-09-06T04:06:04.976Z,0