CVE-2024-28974

Summary

Dell Data Protection Advisor, version(s) 19.9, contain(s) an Inadequate Encryption Strength vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.

Affected Software

VendorProductVersion RangeStatus
DellData Protection Advisor19.5 <= 19.9affected
DellPowerProtect DP Series Appliance (IDPA)N/A <= 2.7.6affected

Weaknesses

  • CWE-326: CWE-326: Inadequate Encryption Strength

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References