CVE Details
Basic Information
| Title | CVE-2024-28979 |
|---|---|
| Type | cve |
| Published | 2024-05-01T04:03:39.729Z |
| Modified | 2024-08-20T16:33:25.303Z |
Product Information
| Vendor | Dell |
|---|---|
| Product | Dell OpenManage Enterprise |
| Version | N/A |
CVSS Information
| Base Score | 5.1 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L |
Affected Products
- Dell Dell OpenManage Enterprise N/A
Additional Information
| CWE List | CWE-79 |
|---|---|
| Source | dell |
Description
Dell OpenManage Enterprise, versions 4.1.0 and older, contains an Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.