Impact
The vulnerability exists in the API Gateway container used by Dell EMC VxRail Appliance. The container is executed with root privileges, and a flaw allows an attacker to escape from the isolated container environment and gain access to the underlying host system. This elevation of privilege could enable the attacker to execute arbitrary code, modify system configuration, or access sensitive data, representing a significant confidentiality and integrity risk. The weakness corresponds to CWE-269, indicating improper privilege management.
Affected Systems
The affected product is Dell EMC VxRail Appliance, with the vulnerability present in the API Gateway component as documented in Dell's security update DSA-2024-247. Specific version details are not explicitly listed, but the advisory references VxRail 7.0.520 where the issue exists. Administrators should examine their deployed VxRail appliances for this configuration and verify whether the API Gateway container runs with root privileges.
Risk and Exploitability
The CVSS base score of 7.0 places the issue in the high severity range, whereas the EPSS score of less than 1% indicates that exploitation is unlikely, and the vulnerability is not listed in the CISA KEV catalog. However, because the container runs with root, the attack surface is enlarged if an attacker can reach the API Gateway process. The likely attack vector is achieved through remote input to the API Gateway or by exploiting a flaw that allows code execution within the container to break out of isolation. While the probability of automation‑based exploitation remains low, the potential impact warrants prompt remediation.
OpenCVE Enrichment