Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2022-10-21 CVE-2020-5355 Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs
The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission Control Protocol (TCP) and stream forwarding.
network
low complexity
dell CWE-276
4.3
2022-10-21 CVE-2022-26870 Improper Authentication vulnerability in Dell Powerstoreos 2.1.0.0/2.1.0.1
Dell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability.
network
low complexity
dell CWE-287
critical
9.8
2022-10-21 CVE-2022-31239 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs 9.1.0.0/9.2.1.0/9.3.0.0
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability.
local
low complexity
dell CWE-532
4.4
2022-10-21 CVE-2022-34437 OS Command Injection vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability.
local
low complexity
dell CWE-78
6.7
2022-10-21 CVE-2022-34438 Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error.
local
low complexity
dell CWE-269
6.7
2022-10-21 CVE-2022-34439 Allocation of Resources Without Limits or Throttling vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability.
network
low complexity
dell CWE-770
7.5
2022-10-12 CVE-2022-31228 Improper Restriction of Excessive Authentication Attempts vulnerability in Dell Xtremio Management Server 6.3.0/6.3.38
Dell EMC XtremIO versions prior to X2 6.4.0-22 contain a bruteforce vulnerability.
network
low complexity
dell CWE-307
critical
9.8
2022-10-12 CVE-2022-32483 Improper Input Validation vulnerability in Dell products
Dell BIOS contains an improper input validation vulnerability.
local
low complexity
dell CWE-20
4.4
2022-10-12 CVE-2022-32484 Improper Input Validation vulnerability in Dell products
Dell BIOS contains an improper input validation vulnerability.
local
low complexity
dell CWE-20
4.4
2022-10-12 CVE-2022-32485 Improper Input Validation vulnerability in Dell products
Dell BIOS contains an improper input validation vulnerability.
local
low complexity
dell CWE-20
7.8