{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T14:36:41.398","vulnerabilities":[{"cve":{"id":"CVE-2024-22461","sourceIdentifier":"security_alert@emc.com","published":"2024-12-13T14:15:21.383","lastModified":"2025-02-04T15:52:29.483","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell RecoverPoint for Virtual Machines 6.0.x contains an OS Command injection vulnerability. A low privileged remote attacker could potentially exploit this vulnerability by running any command as root, leading to gaining of root-level access and compromise of complete system."},{"lang":"es","value":"Dell RecoverPoint for Virtual Machines 6.0.x contiene una vulnerabilidad de inyección de comandos del sistema operativo. Un atacante remoto con pocos privilegios podría aprovechar esta vulnerabilidad ejecutando cualquier comando como superusario, lo que le permitiría obtener acceso a nivel superusario y comprometer todo el sistema."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Secondary","description":[{"lang":"en","value":"CWE-347"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-78"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1:*:*:*:*:*:*","matchCriteriaId":"DD0ABCD5-9273-4799-A916-3518ED5EBB46"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1_p1:*:*:*:*:*:*","matchCriteriaId":"800D6F27-0B30-4E0A-94F6-B52367D50761"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000259765/dsa-2024-429-security-update-for-dell-recoverpoint-for-virtual-machines-multiple-third-party-component-vulnerabilities","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}