High
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2024-37125 | Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an Uncontrolled Resource Consumption vulnerability. A remote unauthenticated host could potentially exploit this vulnerability leading to a denial of service. | 7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
CVE-2024-39577 | Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability leading to code execution. |
7.1 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Proprietary Code CVEs | Description | CVSS Base Score | CVSS Vector String |
---|---|---|---|
CVE-2024-37125 | Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an Uncontrolled Resource Consumption vulnerability. A remote unauthenticated host could potentially exploit this vulnerability leading to a denial of service. | 7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
CVE-2024-39577 | Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability leading to code execution. |
7.1 | CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H |
Product | Affected Versions | Remediated Versions | Link |
---|---|---|---|
Dell Networking OS10 | 10.5.6.x | 10.5.6.4 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.5.x | 10.5.5.11 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.4.x | 10.5.4.12 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.3.x | 10.5.3.11 | SmartFabric OS10 downloads page |
Product | Affected Versions | Remediated Versions | Link |
---|---|---|---|
Dell Networking OS10 | 10.5.6.x | 10.5.6.4 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.5.x | 10.5.5.11 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.4.x | 10.5.4.12 | SmartFabric OS10 downloads page |
Dell Networking OS10 | 10.5.3.x | 10.5.3.11 | SmartFabric OS10 downloads page |
CVE ID | Workaround and Mitigation |
---|---|
CVE-2024-37125 | Shut the port through which the crafted packets are ingress into switch. |
Revision | Date | Description |
---|---|---|
1.0 | 2024-09-26 | Initial Release |