CVE-2024-38482 Information

Description

CloudLink versions 7.1.x and 8.x contain an Improper check or handling of Exceptional Conditions Vulnerability in Cluster Component. A highly privileged malicious user with remote access could potentially exploit this vulnerability leading to execute unauthorized actions and retrieve sensitive information from the database.

Reference

https://www.dell.com/support/kbdoc/en-us/000227493/dsa-2024-343-security-update-for-dell-cloudlink-vulnerability