- Description
- Dell Data Lakehouse, version(s) 1.0.0.0 and 1.1.0.0, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.6
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- security_alert@emc.com
- CWE-89
- Hype score
- Not currently trending
🚨 #Dell Data Lakehouse Vulnerable to Local SQL Injection (#CVE-2024-47483) https://t.co/Wp1lT0l4Pd
@UndercodeNews
31 Oct 2024
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE Alert: CVE-2024-47483 - https://t.co/nNgLEELtGW #OSINT #ThreatIntel #CyberSecurity #cve_2024_47483
@RedPacketSec
26 Oct 2024
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:data_lakehouse:1.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "839FBFDF-07D0-4D53-A264-D66DC6CB91D1"
},
{
"criteria": "cpe:2.3:a:dell:data_lakehouse:1.1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F92033EC-EA61-41E5-AB84-F2A560BBAF81"
}
],
"operator": "OR"
}
]
}
]