CVE-2024-48013

Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges.

Weakness

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

Affected Software

Name	Vendor	Start Version	End Version
Smartfabric_os10	Dell	10.5.4.0 (including)	10.5.4.14 (excluding)
Smartfabric_os10	Dell	10.5.5.0 (including)	10.5.5.13 (excluding)
Smartfabric_os10	Dell	10.5.6.0 (including)	10.5.6.8 (excluding)
Smartfabric_os10	Dell	10.6.0.0 (including)	10.6.0.2 (excluding)

Potential Mitigations

https://cwe.mitre.org/data/definitions/104.html
https://cwe.mitre.org/data/definitions/470.html
https://cwe.mitre.org/data/definitions/69.html

References

https://www.dell.com/support/kbdoc/en-us/000289970/dsa-2025-070-security-update-for-dell-networking-os10-vulnerabilities
https://www.dell.com/support/kbdoc/en-us/000293638/dsa-2025-069-security-update-for-dell-networking-os10-vulnerabilities
https://www.dell.com/support/kbdoc/en-us/000294091/dsa-2025-079-security-update-for-dell-networking-os10-vulnerabilities
https://www.dell.com/support/kbdoc/en-us/000295014/dsa-2025-068-security-update-for-dell-networking-os10-vulnerabilities

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-48013
CWE	https://cwe.mitre.org/data/definitions/250.html

Execution with Unnecessary Privileges

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References