CVE-2024-47975

CVSS 7 HIGHEPSS 0.2%CWE-284

Vexday Risk Score

21Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 7EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

07 Oct 2024Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Improper access control validation in firmware of some Solidigm DC Products may allow an attacker with physical access to gain unauthorized access or an attacker with local access to potentially enable denial of service.

CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Affected products

Solidigm · D5-P4320 Solidigm · D5-P4326 Solidigm · D5-P5316 Solidigm · D7-P5500 Solidigm · D7-P5520 Solidigm · D7-P5600 Solidigm · D7-P5620 Solidigm · D7-P5628 Solidigm · DC P4510 Solidigm · DC P4511 Solidigm · DC P4610

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.solidigm.com/support-page/support-security.html