Use of a Cryptographic Primitive with a Risky Implementation
CVE-2024-37137
Summary
Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure.
- HIGH
- LOCAL
- LOW
- UNCHANGED
- REQUIRED
- HIGH
- LOW
- LOW
CWE-1240 - Use of a Cryptographic Primitive with a Risky Implementation
To fulfill the need for a cryptographic primitive, the product implements a cryptographic algorithm using a non-standard, unproven, or disallowed/non-compliant cryptographic implementation.
References
Advisory Timeline
- Published
