cbcvebase.
CVE-2024-37130
published 2024-06-11

CVE-2024-37130: Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains a Local Privilege Escalation vulnerability via XSL Hijacking. A local…

PriorityP341high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.17%
6.6th percentile
Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains a Local Privilege Escalation vulnerability via XSL Hijacking. A local low-privileged malicious user could potentially exploit this vulnerability and escalate their privilege to the admin user and gain full control of the machine. Exploitation may lead to a complete system compromise.

Affected

4 ranges
VendorProductVersion rangeFixed in
delldell_openmanage_server_administrator>= N/A < 11.0.1.111.0.1.1
delldell_openmanage_server_administrator>= N/A < 11.0.0.211.0.0.2
delldell_openmanage_server_administrator>= N/A < 10.3.0.110.3.0.1
dellopenmanage_server_administrator<= 11.0.1.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.