Dell Update_disk_psu_baseline.sh plain text password issue (CVE-2024-39575): CVE-2024-39575 June 2026

Dell Update_disk_psu_baseline.sh plain text password issue (CVE-2024-39575)
CVE-2024-39575 Published on June 16, 2026

update_disk_psu_baseline.sh requires password in plain text

Vulnerability Analysis

CVE-2024-39575 can be exploited with local system access, and requires user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have a small impact on confidentiality, a high impact on integrity and availability.

Attack Vector:

LOCAL

Attack Complexity:

HIGH

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

CHANGED

Confidentiality Impact:

LOW

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Unprotected Storage of Credentials

Storing a password in plaintext may result in a system compromise. Password management issues occur when a password is stored in plaintext in an application's properties or configuration file. Storing a plaintext password in a configuration file allows anyone who can read the file access to the password-protected resource.

Affected Versions

Before 7.0.520 is affected.

Dell Update_disk_psu_baseline.sh plain text password issue (CVE-2024-39575)CVE-2024-39575 Published on June 16, 2026

Vulnerability Analysis

Weakness Type

Unprotected Storage of Credentials

Affected Versions

Dell Update_disk_psu_baseline.sh plain text password issue (CVE-2024-39575)
CVE-2024-39575 Published on June 16, 2026