CVE-2024-38488
published 2024-12-13CVE-2024-38488: Dell RecoverPoint for Virtual Machines 6.0.x contains a vulnerability. An improper Restriction of Excessive Authentication vulnerability where a Network…
PriorityP354critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.31%
22.9th percentile
Dell RecoverPoint for Virtual Machines 6.0.x contains a vulnerability. An improper Restriction of Excessive Authentication vulnerability where a Network attacker could potentially exploit this vulnerability, leading to a brute force attack or a dictionary attack against the RecoverPoint login form and a complete system compromise.
This allows attackers to brute-force the password of valid users in an automated manner.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | recoverpoint_for_virtual_machines | — | — |
| dell | recoverpoint_for_virtual_machines | — | — |
| dell | recoverpoint_for_virtual_machines | — | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4g8h-jqj8-hf34: Dell RecoverPoint for Virtual Machines 6
ghsa_unreviewed·2024-12-13
CVE-2024-38488 [MEDIUM] CWE-307 GHSA-4g8h-jqj8-hf34: Dell RecoverPoint for Virtual Machines 6
Dell RecoverPoint for Virtual Machines 6.0.x contains a vulnerability. An improper Restriction of Excessive Authentication vulnerability where a Network attacker could potentially exploit this vulnerability, leading to a brute force attack or a dictionary attack against the RecoverPoint login form and a complete system compromise.
This allows attackers to brute-force the password of valid users in an automated manner.
Red Hat
kernel: Linux kernel: Denial of Service in SMB client due to use-after-free in asynchronous crypto handling
vendor_redhat·2025-07-28·CVSS 7.8
CVE-2025-38488 [HIGH] CWE-825 kernel: Linux kernel: Denial of Service in SMB client due to use-after-free in asynchronous crypto handling
kernel: Linux kernel: Denial of Service in SMB client due to use-after-free in asynchronous crypto handling
In the Linux kernel, the following vulnerability has been resolved:
smb: client: fix use-after-free in crypt_message when using async crypto
The CVE-2024-50047 fix removed asynchronous crypto handling from
crypt_message(), assuming all crypto operations are synchronous.
However, when hardware crypto accelerators are used, this can cause
use-after-free crashes:
crypt_message()
// Allocate the creq buffer containing the req
creq = smb2_get_aead_req(..., &req);
// Async encryption returns -EINPROGRESS immediately
rc = enc ? crypto_aead_encrypt(req) : crypto_aead_decrypt(req);
// Free creq while async operation is still in progress
kvfree_sensitive(creq, ...);
Hardware crypto modules of
No detection rules found.
No public exploits indexed.
2024-12-13
Published