CVE-2024-22464

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Published Feb 8, 2024

Updated: Feb 15, 2024

CWE ID 532

Summary

CVE-2024-22464 is a vulnerability affecting Dell EMC AppSync versions 4.2.0.0 to 4.6.0.0 and their Service Pack releases. This issue exposes sensitive information through AppSync server logs, making user credentials vulnerable. A high-privileged remote attacker could exploit this vulnerability, potentially gaining access to the system using the disclosed credentials and assuming the compromised account's privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell Technologies, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uGN8aa
https://www.cve.org/CVERecord?id=CVE-2024-22464
https://nvd.nist.gov/vuln/detail/CVE-2024-22464

Back to Vulnerability Database

CVE-2024-22464

CVSS 3.1 Score 6.8 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations