PatchSiren cyber security CVE debrief
CVE-2024-39575 Dell CVE debrief
CVE-2024-39575 is a high-severity vulnerability with a CVSS score of 7.4. The vulnerability is related to the update_disk_psu_baseline.sh script, which requires a password in plain text. The CVE was published on 2026-06-16T19:16:29.040Z and last modified on 2026-06-16T20:41:35.520Z. The vendor is currently listed as Unknown Vendor, but evidence suggests a potential link to Dell [ref-4].
- Vendor
- Dell
- Product
- Dell EMC VxRail Appliance
- CVSS
- HIGH 7.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-16
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-16
Who should care
Administrators and users of Dell VxRail 7.0.520 systems, as well as security teams responsible for vulnerability management.
Technical summary
The update_disk_psu_baseline.sh script requires a password in plain text, posing a security risk. The vulnerability has been assigned a CVSS score of 7.4, indicating a high severity level. The CVSS vector is CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:H.
Defensive priority
High
Recommended defensive actions
- Review and update the script to use secure password handling practices.
- Implement additional security measures to protect against potential exploitation.
Evidence notes
The CVE record [cve-org] and NVD detail [nvd] provide official information about the vulnerability. A Dell security update [ref-4] is also available for reference.
Official resources
-
CVE-2024-39575 CVE record
CVE.org
-
CVE-2024-39575 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2024-39575 was published on 2026-06-16T19:16:29.040Z and last modified on 2026-06-16T20:41:35.520Z.