Severity
Low
Analysis Summary
CVE-2024-37137
Dell CloudLink could allow a local authenticated attacker to obtain sensitive information, caused by the use of a cryptographic primitive with a risky implementation vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
Impact
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2024-37137
Affected Vendors
Dell
Affected Products
- Dell CloudLink 7.1.8
Remediation
Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.