CVE-2024-42427 Information

Description

Dell ThinOS versions 2402 and 2405 contains an Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability leading to Elevation of privileges.

Reference

https://www.dell.com/support/kbdoc/en-us/000228350/dsa-2024-386