PatchSiren cyber security CVE debrief
CVE-2024-30476 Dell CVE debrief
CVE-2024-30476 is a Stored Cross-Site Scripting Vulnerability in the PowerStore Manager. A remote authenticated low-privileged malicious actor could potentially exploit this vulnerability, it could lead to script execution in the client browser. The vulnerability has a CVSS score of 5.4 and a severity of MEDIUM.
- Vendor
- Dell
- Product
- PowerStore
- CVSS
- MEDIUM 5.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-16
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-16
Who should care
Users of PowerStore Manager
Technical summary
The vulnerability is caused by improper input validation in the PowerStore Manager, allowing an attacker to inject malicious scripts. The vulnerability can be exploited by a remote authenticated low-privileged malicious actor.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the security update provided by Dell (see [ref-4](https://www.dell.com/support/kbdoc/en-us/000225368/dsa-2024-225-dell-powerstore-family-security-update-for-multiple-vulnerabilities?lang=en))
Evidence notes
The CVE record was obtained from the official CVE website ([cve-org](https://www.cve.org/CVERecord?id=CVE-2024-30476)). The vulnerability details were obtained from the NVD database ([nvd](https://nvd.nist.gov/vuln/detail/CVE-2024-30476)).
Official resources
-
CVE-2024-30476 CVE record
CVE.org
-
CVE-2024-30476 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2024-30476 was published on 2026-06-16T17:16:28.433Z and modified on 2026-06-16T17:34:39.967Z.