Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-08 | CVE-2025-30101 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. | 6.3 |
| 2025-05-08 | CVE-2025-30102 | Out-of-bounds Write vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write vulnerability. | 5.5 |
| 2025-05-06 | CVE-2025-22477 | Improper Authentication vulnerability in Dell Storage Manager 16.3.20/2016/2020 Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Authentication vulnerability. | 8.8 |
| 2025-05-06 | CVE-2025-22478 | XXE vulnerability in Dell Storage Manager 16.3.20/2016/2020 Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Restriction of XML External Entity Reference vulnerability. | 8.1 |
| 2025-05-06 | CVE-2025-22479 | Path Traversal vulnerability in Dell Storage Manager 16.3.20/2016/2020 Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. | 4.3 |
| 2025-05-06 | CVE-2025-23379 | Cross-site Scripting vulnerability in Dell Storage Manager 16.3.20/2016/2020 Dell Storage Center - Dell Storage Manager, version(s) 21.0.20, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. | 5.2 |
| 2025-04-28 | CVE-2025-23375 | Incorrect Use of Privileged APIs vulnerability in Dell Powerprotect Data Manager 19.17 Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. | 7.8 |
| 2025-04-28 | CVE-2025-23376 | Unspecified vulnerability in Dell Powerprotect Data Manager 19.16/19.17/19.18 Dell PowerProtect Data Manager Reporting, version(s) 19.16, 19.17, 19.18, contain(s) an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. | 4.4 |
| 2025-04-28 | CVE-2025-23377 | Improper Encoding or Escaping of Output vulnerability in Dell Powerprotect Data Manager 19.17/19.18 Dell PowerProtect Data Manager Reporting, version(s) 19.17, 19.18 contain(s) an Improper Encoding or Escaping of Output vulnerability. | 3.4 |
| 2025-03-21 | CVE-2025-26336 | Stack-based Buffer Overflow vulnerability in Dell products Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, version(s) prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX version(s) prior to 3.41.200.202209300499, contain(s) a Stack-based Buffer Overflow vulnerability. | 9.8 |