Dell Warns of Critical Vulnerability in OpenManage Software
/ 1 min read
🛠️ Dell Technologies warns of critical vulnerability in OpenManage Server Administrator. A high-severity flaw (CVE-2024-52316) in Apache Tomcat could enable unauthorized access to systems using Dell’s OpenManage Server Administrator (OMSA) software. This vulnerability arises from an unchecked error condition in the Jakarta Authentication component, potentially allowing malicious actors to bypass authentication. Affected Apache Tomcat versions include 11.0.0-M1 to 11.0.0-M2, 10.1.0-M1 to 10.1.3, and 9.0.0-M1 to 9.0.95. Dell advises users to upgrade to Apache Tomcat version 11.1.0.0 or later to mitigate risks. The vulnerability has a CVSS score of 9.8, highlighting its critical nature and ease of exploitation, particularly in enterprise environments.
