Vulnerabilities > CVE-2024-52543 - Exposure of Resource to Wrong Sphere vulnerability in Dell Nativeedge Orchestrator

CVSS 4.4 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

dell

CWE-668

NVD

Published: 2024-12-25

Updated: 2025-01-29

Summary

Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure Permissions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Nativeedge Orchestrator *	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://www.dell.com/support/kbdoc/en-us/000258904/dsa-2024-488-security-update-for-dell-nativeedge-multiple-vulnerabilities