July 1, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
APT10 Uses NOOPDOOR and LODEINFO Malware to Attack Japanese Companies – Active IOCs
August 1, 2024Multiple Google Chrome Vulnerabilities
August 1, 2024APT10 Uses NOOPDOOR and LODEINFO Malware to Attack Japanese Companies – Active IOCs
August 1, 2024Multiple Google Chrome Vulnerabilities
August 1, 2024
Severity
High
Analysis Summary
CVE-2024-37127 CVSS:7.8
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege.
CVE-2024-37142 CVSS:7.3
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege.
CVE-2024-32857 CVSS:7.3
Dell Peripheral Manager, versions prior to 1.7.6, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious DLL or symbolic link exploitation, leading to arbitrary code execution and escalation of privilege.
Impact
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-37127
- CVE-2024-37142
- CVE-2024-32857
Affected Vendors
Dell
Affected Products
- Dell Peripheral Manager
Remediation
Refer to Dell Security Advisory for patch, upgrade, or suggested workaround information.