Overview
- Description
- Dell Data Lakehouse, version(s) 1.0.0.0 and 1.1.0.0, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
Weaknesses
- security_alert@emc.com
- CWE-89
Social media
- Hype score
- Not currently trending
馃毃 #Dell Data Lakehouse Vulnerable to Local SQL Injection (#CVE-2024-47483) https://t.co/Wp1lT0l4Pd
@UndercodeNews
31 Oct 2024
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE Alert: CVE-2024-47483 - https://t.co/nNgLEELtGW #OSINT #ThreatIntel #CyberSecurity #cve_2024_47483
@RedPacketSec
26 Oct 2024
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:data_lakehouse:1.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "839FBFDF-07D0-4D53-A264-D66DC6CB91D1"
},
{
"criteria": "cpe:2.3:a:dell:data_lakehouse:1.1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F92033EC-EA61-41E5-AB84-F2A560BBAF81"
}
],
"operator": "OR"
}
]
}
]