Skip to main content

Dell

1272 CVEs vendor

Monthly

CVE-2023-32446 MEDIUM This Month

Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Wyse Thinos
NVD
CVSS 3.1
5.5
EPSS
0.1%
CVE-2023-28065 HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Dell Microsoft Alienware Update Command Update +1
NVD
CVSS 3.1
7.3
EPSS
0.2%
CVE-2023-32480 MEDIUM This Month

Dell BIOS contains an Improper Input Validation vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Dell Alienware M15 R7 Firmware G15 5510 Firmware G15 5520 Firmware +28
NVD
CVSS 3.1
6.8
EPSS
0.3%
CVE-2023-28073 HIGH This Week

Dell BIOS contains an improper authentication vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Precision 3570 Firmware Latitude 5530 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28071 HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Denial Of Service Dell Microsoft Alienware Update Command Update +1
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-28064 MEDIUM This Month

Dell BIOS contains an Out-of-bounds Write vulnerability. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Denial Of Service Dell Alienware M15 R6 Firmware +69
NVD
CVSS 3.1
4.6
EPSS
0.3%
CVE-2023-28060 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28058 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28050 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28044 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28036 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28034 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28031 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28027 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28026 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-25938 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28061 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28059 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28056 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28054 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28052 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28042 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28041 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28040 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28039 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28035 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28033 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28032 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28030 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28029 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-28028 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-25937 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware Alienware Area 51M R2 Firmware Alienware Aurora R11 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-25936 MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware Latitude 7400 2 In 1 Firmware Latitude 3520 Firmware +431
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-32464 LOW Monitor

Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. Rated low severity (CVSS 3.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Dell Vxrail D560 Firmware Vxrail D560F Firmware Vxrail E460 Firmware +42
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2023-32463 HIGH This Week

Dell VxRail, version(s) 8.0.100 and earlier contain a denial-of-service vulnerability in the upgrade functionality. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dell Vxrail D560 Firmware Vxrail D560F Firmware Vxrail E460 Firmware +42
NVD
CVSS 3.1
7.5
EPSS
0.5%
CVE-2023-32449 HIGH PATCH This Week

Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Jwt Attack Dell Powerstoret Os
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-32465 HIGH This Week

Dell Power Protect Cyber Recovery, contains an Authentication Bypass vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Powerprotect Cyber Recovery
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-28066 HIGH This Week

Dell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Os Recovery Tool
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28043 MEDIUM This Month

Dell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Secure Connect Gateway
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2023-25539 CRITICAL Act Now

Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Command Injection Dell Networker
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2023-24568 MEDIUM This Month

Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port which could disallow replacing CA signed certificates. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Networker
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2023-23694 HIGH This Week

Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Vxrail Hyperconverged Infrastructure
NVD
CVSS 3.1
7.8
EPSS
0.7%
CVE-2023-23693 HIGH This Week

Dell VxRail, versions prior to 7.0.450, contains an OS command injection Vulnerability in DCManager command-line utility. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Vxrail Hyperconverged Infrastructure
NVD
CVSS 3.1
8.2
EPSS
0.4%
CVE-2023-25537 HIGH This Week

Dell PowerEdge 14G server BIOS versions prior to 2.18.1 and Dell Precision BIOS versions prior to 2.18.2, contain an Out of Bounds write vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Privilege Escalation RCE Memory Corruption Dell +30
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28045 HIGH PATCH This Week

Dell CloudIQ Collector version 1.10.2 contains a missing encryption of sensitive data vulnerability. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Dell Cloudiq Collector
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-28068 HIGH This Week

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Command Monitor
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25934 HIGH This Week

DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jwt Attack Dell Elastic Cloud Storage
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2023-28047 HIGH PATCH This Week

Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder creation vulnerability during installation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Dell Display Manager
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28062 HIGH This Week

Dell PPDM versions 19.12, 19.11 and 19.10, contain an improper access control vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Powerprotect Data Manager
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2023-28051 HIGH This Week

Dell Power Manager, versions 3.10 and prior, contains an Improper Access Control vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Power Manager
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-28046 HIGH PATCH This Week

Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder deletion vulnerability during uninstallation A local low privilege attacker could potentially exploit this. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Dell Display Manager
NVD
CVSS 3.1
7.1
EPSS
0.1%
CVE-2023-25542 HIGH This Week

Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Trusted Device Agent
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-28069 MEDIUM This Month

Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Open Redirect Streaming Data Platform
NVD
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-25942 MEDIUM PATCH This Month

Dell PowerScale OneFS versions 8.2.x-9.4.x contain an uncontrolled resource consumption vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Dell Emc Powerscale Onefs
NVD
CVSS 3.1
6.5
EPSS
0.6%
CVE-2023-25941 HIGH PATCH This Week

Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Information Disclosure Denial Of Service Dell Emc Powerscale Onefs
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-25940 HIGH PATCH This Week

Dell PowerScale OneFS version 9.5.0.0 contains improper link resolution before file access vulnerability in isi_gather_info. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-24571 MEDIUM This Month

Dell BIOS contains an Improper Input Validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Embedded Box Pc 3000 Firmware
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2023-25536 MEDIUM PATCH This Month

Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Information Disclosure Dell Powerscale Onefs
NVD
CVSS 3.1
6.7
EPSS
0.1%
CVE-2023-25544 MEDIUM This Month

Dell NetWorker versions 19.5 and earlier contain 'Apache Tomcat' version disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Tomcat Apache Information Disclosure Dell Emc Networker
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-24567 MEDIUM This Month

Dell NetWorker versions 19.5 and earlier contain 'RabbitMQ' version disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Networker
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-25540 HIGH PATCH This Week

Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Privilege Escalation Denial Of Service Dell Emc Powerscale Onefs
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-23689 HIGH PATCH This Week

Dell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Dell A200 Firmware A2000 Firmware H400 Firmware +5
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-24575 HIGH This Week

Dell Multifunction Printer E525w Driver and Software Suite, versions prior to 1.047.2022, A05, contain a local privilege escalation vulnerability that could be exploited by malicious users to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Multifunction Printer E525W Driver And Software Suite
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23695 MEDIUM This Month

Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dell Secure Connect Gateway
NVD
CVSS 3.1
5.9
EPSS
0.4%
CVE-2023-24572 LOW PATCH Monitor

Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Dell Command Integration Suite For System Center
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2023-23697 LOW PATCH Monitor

Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Intel Dell Command Intel Vpro Out Of Band
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2023-24573 HIGH This Week

Dell Command | Monitor versions prior to 10.9 contain an arbitrary folder delete vulnerability during uninstallation. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Command Monitor
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-24569 HIGH This Week

Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Command Center
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23698 HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Dell Microsoft Alienware Update Command Update
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-23696 HIGH PATCH This Week

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Dell Intel Authentication Bypass Command Intel Vpro Out Of Band
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-24574 HIGH This Week

Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dell Enterprise Sonic Distribution
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2023-22575 HIGH This Week

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
8.8
EPSS
0.6%
CVE-2023-22574 HIGH This Week

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Dell Emc Powerscale Onefs
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2023-22573 MEDIUM This Month

Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-23692 HIGH This Week

Dell EMC prior to version DDOS 7.9 contain(s) an OS command injection Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Emc Data Domain Os
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2023-22572 HIGH This Week

Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password api. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-23691 HIGH This Week

Dell EMC PV ME5, versions ME5.1.0.0.0 and ME5.1.0.1.0, contains a Client-side desync Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Request Smuggling Dell Powervault Me5012 Firmware Powervault Me5024 Firmware +1
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2023-23690 HIGH This Week

Cloud Mobility for Dell EMC Storage, versions 1.3.0.X and below contains an Improper Check for Certificate Revocation vulnerability. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dell Cloud Mobility For Dell Emc Storage
NVD
CVSS 3.1
7.0
EPSS
0.2%
CVE-2022-34439 HIGH PATCH This Week

Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dell Denial Of Service Emc Powerscale Onefs
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2022-34438 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Dell Privilege Escalation Emc Powerscale Onefs
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2022-34437 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Dell Command Injection Emc Powerscale Onefs
NVD
CVSS 3.1
6.7
EPSS
0.5%
CVE-2022-31239 MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Dell Emc Powerscale Onefs
NVD
CVSS 3.1
4.4
EPSS
0.2%
CVE-2022-26870 CRITICAL PATCH Act Now

Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Dell Powerstoreos
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2022-34391 HIGH This Week

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Buffer Overflow Alienware Area 51 R5 Firmware Alienware Area 51 R4 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-34390 HIGH This Week

Dell BIOS contains a use of uninitialized variable vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Alienware Area 51 R5 Firmware Alienware Area 51 R4 Firmware
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-33937 HIGH This Week

Dell GeoDrive, Versions 1.0 - 2.2, contain a Path Traversal Vulnerability in the reporting function. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Dell Path Traversal Geodrive
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2022-33922 HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains Insecure File and Folder Permissions vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Privilege Escalation Geodrive
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2022-33921 HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains Multiple DLL Hijacking Vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Geodrive
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-33920 HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Geodrive
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-33919 HIGH This Week

Dell GeoDrive, versions 2.1 - 2.2, contains an information disclosure vulnerability in GUI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Geodrive
NVD
CVSS 3.1
7.8
EPSS
0.2%
EPSS 0% CVSS 5.5
MEDIUM This Month

Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Wyse Thinos
NVD
EPSS 0% CVSS 7.3
HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity.

Privilege Escalation Dell Microsoft +3
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Dell BIOS contains an Improper Input Validation vulnerability. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Dell Alienware M15 R7 Firmware +30
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell BIOS contains an improper authentication vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Precision 3570 Firmware +1
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Denial Of Service Dell Microsoft +3
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Dell BIOS contains an Out-of-bounds Write vulnerability. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Buffer Overflow Denial Of Service +71
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Area 51M R1 Firmware +433
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an improper input validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Inspiron 7501 Firmware Latitude 3420 Firmware Inspiron 5502 Firmware +433
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Dell VxRail, versions prior to 7.0.450, contain an improper certificate validation vulnerability. Rated low severity (CVSS 3.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Dell Vxrail D560 Firmware +44
NVD
EPSS 0% CVSS 7.5
HIGH This Week

Dell VxRail, version(s) 8.0.100 and earlier contain a denial-of-service vulnerability in the upgrade functionality. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Dell Vxrail D560 Firmware +44
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell PowerStore versions prior to 3.5 contain an improper verification of cryptographic signature vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Authentication Bypass Jwt Attack Dell +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Dell Power Protect Cyber Recovery, contains an Authentication Bypass vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Powerprotect Cyber Recovery
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell OS Recovery Tool, versions 2.2.4013 and 2.3.7012.0, contain an Improper Access Control Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Os Recovery Tool
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Dell SCG 5.14 contains an information disclosure vulnerability during the SRS to SCG upgrade path. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Secure Connect Gateway
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Command Injection +2
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port which could disallow replacing CA signed certificates. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Networker
NVD
EPSS 1% CVSS 7.8
HIGH This Week

Dell VxRail versions earlier than 7.0.450, contain(s) an OS command injection vulnerability in VxRail Manager. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Vxrail Hyperconverged Infrastructure
NVD
EPSS 0% CVSS 8.2
HIGH This Week

Dell VxRail, versions prior to 7.0.450, contains an OS command injection Vulnerability in DCManager command-line utility. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Vxrail Hyperconverged Infrastructure
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell PowerEdge 14G server BIOS versions prior to 2.18.1 and Dell Precision BIOS versions prior to 2.18.2, contain an Out of Bounds write vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Privilege Escalation RCE +32
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Dell CloudIQ Collector version 1.10.2 contains a missing encryption of sensitive data vulnerability. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Dell Cloudiq Collector
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Command Monitor
NVD
EPSS 0% CVSS 7.5
HIGH This Week

DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Jwt Attack Dell +1
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder creation vulnerability during installation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

RCE Dell Display Manager
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Dell PPDM versions 19.12, 19.11 and 19.10, contain an improper access control vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Powerprotect Data Manager
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Power Manager, versions 3.10 and prior, contains an Improper Access Control vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Power Manager
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder deletion vulnerability during uninstallation A local low privilege attacker could potentially exploit this. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Dell Display Manager
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Trusted Device Agent, versions prior to 5.3.0, contain(s) an improper installation permissions vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Trusted Device Agent
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Open Redirect +1
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Dell PowerScale OneFS versions 8.2.x-9.4.x contain an uncontrolled resource consumption vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Dell Emc Powerscale Onefs
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Information Disclosure Denial Of Service +2
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell PowerScale OneFS version 9.5.0.0 contains improper link resolution before file access vulnerability in isi_gather_info. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Dell Emc Powerscale Onefs
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Dell BIOS contains an Improper Input Validation vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Embedded Box Pc 3000 Firmware
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Information Disclosure Dell Powerscale Onefs
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Dell NetWorker versions 19.5 and earlier contain 'Apache Tomcat' version disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Tomcat Apache Information Disclosure +2
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

Dell NetWorker versions 19.5 and earlier contain 'RabbitMQ' version disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Networker
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Privilege Escalation Denial Of Service Dell +1
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Dell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Dell A200 Firmware +7
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Multifunction Printer E525w Driver and Software Suite, versions prior to 1.047.2022, A05, contain a local privilege escalation vulnerability that could be exploited by malicious users to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Multifunction Printer E525W Driver And Software Suite
NVD
EPSS 0% CVSS 5.9
MEDIUM This Month

Dell Secure Connect Gateway (SCG) version 5.14.00.12 contains a broken cryptographic algorithm vulnerability. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dell Secure Connect Gateway
NVD
EPSS 0% CVSS 3.3
LOW PATCH Monitor

Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Dell Command Integration Suite For System Center
NVD
EPSS 0% CVSS 3.3
LOW PATCH Monitor

Dell Command | Intel vPro Out of Band, versions before 4.4.0, contain an arbitrary folder delete vulnerability during uninstallation. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.

Information Disclosure Intel Dell +1
NVD
EPSS 0% CVSS 7.1
HIGH This Week

Dell Command | Monitor versions prior to 10.9 contain an arbitrary folder delete vulnerability during uninstallation. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Dell Command Monitor
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Alienware Command Center
NVD
EPSS 0% CVSS 7.1
HIGH PATCH This Week

Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity.

Information Disclosure Dell Microsoft +2
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Dell Intel Authentication Bypass +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Dell Enterprise Sonic Distribution
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
EPSS 1% CVSS 8.1
HIGH This Week

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Denial Of Service Dell +1
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
EPSS 2% CVSS 8.8
HIGH This Week

Dell EMC prior to version DDOS 7.9 contain(s) an OS command injection Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Emc Data Domain Os
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password api. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Emc Powerscale Onefs
NVD
EPSS 0% CVSS 8.8
HIGH This Week

Dell EMC PV ME5, versions ME5.1.0.0.0 and ME5.1.0.1.0, contains a Client-side desync Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Request Smuggling Dell +3
NVD
EPSS 0% CVSS 7.0
HIGH This Week

Cloud Mobility for Dell EMC Storage, versions 1.3.0.X and below contains an Improper Check for Certificate Revocation vulnerability. Rated high severity (CVSS 7.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Dell Cloud Mobility For Dell Emc Storage
NVD
EPSS 1% CVSS 7.5
HIGH PATCH This Week

Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Dell Denial Of Service Emc Powerscale Onefs
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Dell Privilege Escalation Emc Powerscale Onefs
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Dell Command Injection Emc Powerscale Onefs
NVD
EPSS 0% CVSS 4.4
MEDIUM PATCH This Month

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Information Disclosure Dell Emc Powerscale Onefs
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Dell Powerstoreos
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell Client BIOS Versions prior to the remediated version contain an improper input validation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Buffer Overflow +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell BIOS contains a use of uninitialized variable vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Alienware Area 51 R5 Firmware +1
NVD
EPSS 0% CVSS 7.1
HIGH This Week

Dell GeoDrive, Versions 1.0 - 2.2, contain a Path Traversal Vulnerability in the reporting function. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Dell Path Traversal Geodrive
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains Insecure File and Folder Permissions vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Privilege Escalation +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains Multiple DLL Hijacking Vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Geodrive
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Dell Geodrive
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell GeoDrive, versions 2.1 - 2.2, contains an information disclosure vulnerability in GUI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dell Geodrive
NVD
Prev Page 9 of 15 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy