Multiple Juniper Networks Products Vulnerabilities
January 13, 2025Continuous APT Monitoring: Protecting Your Organization Long-Term
January 16, 2025Multiple Juniper Networks Products Vulnerabilities
January 13, 2025Continuous APT Monitoring: Protecting Your Organization Long-Term
January 16, 2025Severity
Medium
Analysis Summary
CVE-2024-37136 CVSS:6.8
Dell Path to PowerProtect could allow a remote attacker to obtain sensitive information, caused by unauthorized actor vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
CVE-2024-38296 CVSS:6.7
Dell Edge Gateway 5200 (Coffee Lake S) could allow a remote attacker to obtain sensitive information, caused by Shared Microarchitectural Structures during Transient Execution vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information and use this information to launch further attacks against the affected system.
Impact
- Information Disclosure
Indicators of Compromise
CVE
CVE-2024-37136
CVE-2024-38296
Affected Vendors
Affected Products
- Dell Path to Power - 1.1
- Dell Edge Gateway 5200
- Dell Path to Power -1.2
Remediation
Refer to Dell Security Advisory for patch, upgrade, or suggested workaround information.