Skip to main content

Emc Vxrail Appliance CVE-2024-38487

| EUVDEUVD-2024-55624 HIGH
Improper Privilege Management (CWE-269)
2026-06-16 dell GHSA-7fr8-453x-xxrc
7.0
CVSS 3.1 · Vendor: dell
Share

Severity by source

Vendor (dell) PRIMARY
7.0 HIGH
AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H

Primary rating from Vendor (dell) · only source for this CVE.

CVSS VectorVendor: dell

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
High

Lifecycle Timeline

2
Patch available
Jun 16, 2026 - 18:01 EUVD
CVE Published
Jun 16, 2026 - 16:29 cve.org
HIGH 7.0

DescriptionCVE.org

api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unintended actions.

AnalysisAI

api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unintended actions. Rated high severity (CVSS 7.0). This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Technical ContextAI

This vulnerability is classified as Improper Privilege Management (CWE-269), which allows attackers to escalate privileges to gain unauthorized elevated access. api-gateway container running with root privilege would allow an attacker to escape the container and access host system to perform unintended actions. Affected products include: Dell Emc Vxrail Appliance.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply principle of least privilege, validate privilege transitions, implement proper role separation.

Share

CVE-2024-38487 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy