HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2024-53291

CVSS 7.5v3.1pub. 2024-12-25upd. 2025-01-29

Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of Sensitive Information Through Metadata vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Dell Nativeedge Orchestrator

    APP
    Dell
    < 2.2.0.0
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2024-47978HIGH7.8ten sam produkt

Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges vulnerability. A low ...

CVE-2024-52543MEDIUM6.5ten sam produkt

Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure Permissions vulnera...

CVE-2026-22769CRITICAL10.0⚠ KEVPL ✓ten sam vendor

Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)

CVE-2026-41120CRITICAL9.8PL ✓ten sam vendor

RCE w Dell Wyse Management Suite — akceptacja niezaufanych danych

CVE-2026-40636CRITICAL9.8PL ✓ten sam vendor

Dell ECS / ObjectScale — podatność hard-coded credentials umożliwiająca dostęp do systemu plików