CVE-2024-24909
published 2026-06-16CVE-2024-24909: Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin. A remote authenticated…
PriorityP262high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.45%
35.7th percentile
Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin. A remote authenticated user could potentially exploit this vulnerability to escalate privileges. The malicious user may gain the ability to run arbitrary code remotely. This is a high severity vulnerability so Dell recommends customers to upgrade at the earliest opportunity.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | openmanage | < 3.2 | 3.2 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Dell OpenManage up to 3.1 command injection (dsa-2024-084)
vuldb·2026-06-16·CVSS 8.8
CVE-2024-24909 [HIGH] Dell OpenManage up to 3.1 command injection (dsa-2024-084)
A vulnerability, which was classified as critical, has been found in Dell OpenManage up to 3.1. This affects an unknown part. The manipulation leads to command injection.
This vulnerability is documented as CVE-2024-24909. The attack can be initiated remotely. There is not any exploit available.
It is advisable to upgrade the affected component.
GHSA
Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin.
ghsa_unreviewed·2026-06-16
CVE-2024-24909 [HIGH] CWE-77 Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin.
Dell OpenManage Integration with Microsoft Windows Admin Center contains a Remote Code Execution vulnerability in the gateway plugin. A remote authenticated user could potentially exploit this vulnerability to escalate privileges. The malicious user may gain the ability to run arbitrary code remotely. This is a high severity vulnerability so Dell recommends customers to upgrade at the earliest opportunity.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-16
Published