Rewterz Threat Alert –Rhadamanthys Stealer – Active IOCs
January 18, 2024Rewterz Threat Alert –Amadey Botnet – Active IOCs
January 22, 2024Rewterz Threat Alert –Rhadamanthys Stealer – Active IOCs
January 18, 2024Rewterz Threat Alert –Amadey Botnet – Active IOCs
January 22, 2024Severity
High
Analysis Summary
CVE-2024-22428
Dell iDRAC Service Module could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect default permissions flaw. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code on the system.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2024-22428
Affected Vendors
Dell
Affected Products
- Dell iDRAC Service Module 5.2.00
Remediation
Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.