CVE-2024-37139

Summary

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an Improper Control of a Resource Through its Lifetime vulnerability in an admin operation. A remote low privileged attacker could potentially exploit this vulnerability, leading to temporary resource constraint of system application. Exploitation may lead to denial of service of the application.

Affected Software

VendorProductVersion RangeStatus
DellPowerProtect DDN/A < 5.16.0.0affected
DellPowerProtect DDN/A < 2.7.7affected
DellPowerProtect DD7.0 <= 7.13affected

Weaknesses

  • CWE-664: CWE-664: Improper Control of a Resource Through its Lifetime

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References