CVE-2024-29176

{"id": "CVE-2024-29176", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security_alert@emc.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2024-06-26T03:15:10.533", "references": [{"url": "https://www.dell.com/support/kbdoc/en-us/000226148/dsa-2024-219-dell-technologies-powerprotect-dd-security-update-for-multiple-security-vulnerabilities", "tags": ["Vendor Advisory"], "source": "security_alert@emc.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "security_alert@emc.com", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "Dell PowerProtect DD, version(s) 8.0, 7.13.1.0, 7.10.1.30, 7.7.5.40, contain(s) an Out-of-bounds Write vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution."}, {"lang": "es", "value": "Dell PowerProtect DD, versiones anteriores a 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contienen una vulnerabilidad de desbordamiento del b\u00fafer. Un atacante remoto con pocos privilegios podr\u00eda explotar esta vulnerabilidad, lo que provocar\u00eda un bloqueo de la aplicaci\u00f3n o la ejecuci\u00f3n de c\u00f3digo arbitrario en el sistema operativo subyacente de la aplicaci\u00f3n vulnerable con los privilegios de la aplicaci\u00f3n vulnerable."}], "lastModified": "2024-10-30T14:15:05.240", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BD07CAF-9671-475C-810D-1BFBFA881E09", "versionEndExcluding": "7.7.5.40", "versionStartIncluding": "7.0"}, {"criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28F4339F-F4B0-479A-B300-ADB987171B31", "versionEndExcluding": "7.10.1.30", "versionStartIncluding": "7.8.0.0"}, {"criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EF3066F-F378-4AA6-B50C-B33C22C57492", "versionEndExcluding": "7.13.1.0", "versionStartIncluding": "7.11.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:dell:apex_protection_storage:-:*:*:*:in-cloud:*:*:*", "vulnerable": false, "matchCriteriaId": "83DBF4F3-791C-48A2-B37E-6B3F6177B470"}, {"criteria": "cpe:2.3:a:dell:apex_protection_storage:-:*:*:*:on-premises:*:*:*", "vulnerable": false, "matchCriteriaId": "D007B2BB-082B-4D33-A6A1-77714341C75C"}, {"criteria": "cpe:2.3:h:dell:dd3300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AA4D9616-4482-4173-9507-6B8EC15F3521"}, {"criteria": "cpe:2.3:h:dell:dd6400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4A81372F-E8DC-49AB-AC12-700F76D4C2C6"}, {"criteria": "cpe:2.3:h:dell:dd6900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5525030D-2AA9-4AB6-8B15-D09214C1834E"}, {"criteria": "cpe:2.3:h:dell:dd9400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4C08E46D-6795-46DB-BA6C-548D7B8EBFA5"}, {"criteria": "cpe:2.3:h:dell:dd9410:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F820D2BB-4773-4B2F-BC50-9474B44DB8F6"}, {"criteria": "cpe:2.3:h:dell:dd9900:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "105F8F20-3EB3-49E7-82BE-3A5742EAA51E"}, {"criteria": "cpe:2.3:h:dell:dd9910:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "84F58819-777E-43C1-B1EA-FFD7CDF79234"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D655A40E-7358-4E29-BDC6-8CC2E8BA1D63", "versionEndExcluding": "5.16.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:dell:dm5500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5B15806F-F6F1-4B26-921C-FE7620B3539F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "security_alert@emc.com"}