CVE-2024-30476
published 2026-06-16CVE-2024-30476: PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager. A remote authenticated low-privileged malicious actor could…
PriorityP426medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
EPSS
0.20%
9.8th percentile
PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager. A remote authenticated low-privileged malicious actor could potentially exploit this vulnerability, it could lead to script execution in the client browser.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | powerstore | < 4.0.0.0-2284811 or later | 4.0.0.0-2284811 or later |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Dell PowerStore cross site scripting (dsa-2024-225)
vuldb·2026-06-16·CVSS 5.4
CVE-2024-30476 [MEDIUM] Dell PowerStore cross site scripting (dsa-2024-225)
A vulnerability labeled as problematic has been found in Dell PowerStore. Affected by this vulnerability is an unknown functionality. Such manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2024-30476. It is possible to launch the attack remotely. No exploit is available.
GHSA
PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager.
ghsa_unreviewed·2026-06-16
CVE-2024-30476 [MEDIUM] CWE-79 PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager.
PowerStore contains a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager. A remote authenticated low-privileged malicious actor could potentially exploit this vulnerability, it could lead to script execution in the client browser.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-16
Published