CVE-2024-37137 – Dell CloudLink Vulnerability

Severity

Low

Analysis Summary

CVE-2024-37137

Dell CloudLink could allow a local authenticated attacker to obtain sensitive information, caused by the use of a cryptographic primitive with a risky implementation vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.

Impact

Information Disclosure

Indicators of Compromise

CVE

CVE-2024-37137

Affected Vendors

Dell

Affected Products

Dell CloudLink 7.1.8

Remediation

Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.

Dell Security Advisory

Multiple Apache HTTP Server Vulnerabilities

Multiple IBM Products Vulnerabilities

CVE-2024-37137 – Dell CloudLink Vulnerability

Severity

Low

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan