CVE-2024-39585

Summary

Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x, contain(s) an Use of Hard-coded Password vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Client-side request forgery and Information disclosure.

Affected Software

VendorProductVersion RangeStatus
DellSmartFabric OS10 Software10.5.6.xaffected
DellSmartFabric OS10 Software10.5.5.4 <= 10.5.5.10affected

Weaknesses

  • CWE-259: CWE-259: Use of Hard-coded Password

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References