Skip to main content

Smartfabric Storage Software

9 CVEs product

Monthly

CVE-2023-32485 CRITICAL PATCH Act Now

Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation Dell Smartfabric Storage Software
NVD
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-4401 HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the ‘more’ command. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Smartfabric Storage Software
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-43073 MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Smartfabric Storage Software
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2023-43072 HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Smartfabric Storage Software
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2023-43071 MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dell Smartfabric Storage Software
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2023-43070 MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Dell Smartfabric Storage Software
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-43069 HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Docker Smartfabric Storage Software
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2023-43068 HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Smartfabric Storage Software
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2022-31232 CRITICAL Act Now

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Smartfabric Storage Software
NVD
CVSS 3.1
9.8
EPSS
0.8%
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Privilege Escalation Dell Smartfabric Storage Software
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the ‘more’ command. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Smartfabric Storage Software
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Dell Smartfabric Storage Software
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Dell Authentication Bypass Smartfabric Storage Software
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dell Smartfabric Storage Software
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Dell Smartfabric Storage Software
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Dell Docker +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Dell Smartfabric Storage Software
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Smartfabric Storage Software
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy