Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2024-05-01 CVE-2024-28978 Improper Access Control vulnerability in Dell Openmanage Enterprise 3.10/4.0
Dell OpenManage Enterprise, versions 3.10 and 4.0, contains an Improper Access Control vulnerability.
network
low complexity
dell CWE-284
6.5
2024-05-01 CVE-2024-28979 Cross-site Scripting vulnerability in Dell Openmanage Enterprise 3.5/3.6.1/3.8.4
Dell OpenManage Enterprise, versions prior to 4.1.0, contains an XSS injection vulnerability in UI.
network
low complexity
dell CWE-79
4.8
2024-02-13 CVE-2024-22445 OS Command Injection vulnerability in Dell Powerprotect Data Manager
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability.
network
low complexity
dell CWE-78
7.2
2024-02-13 CVE-2024-22454 Weak Password Recovery Mechanism for Forgotten Password vulnerability in Dell Powerprotect Data Manager
Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords.
network
low complexity
dell CWE-640
8.8
2024-02-12 CVE-2024-0164 OS Command Injection vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contain an OS Command Injection Vulnerability in its svc_topstats utility.
local
low complexity
dell CWE-78
7.8
2024-02-12 CVE-2024-0165 OS Command Injection vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_acldb_dump utility.
local
low complexity
dell CWE-78
7.8
2024-02-12 CVE-2024-0166 OS Command Injection vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_tcpdump utility.
local
low complexity
dell CWE-78
7.8
2024-02-12 CVE-2024-0167 OS Command Injection vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in the svc_topstats utility.
local
low complexity
dell CWE-78
7.8
2024-02-12 CVE-2024-0168 OS Command Injection vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contains a Command Injection Vulnerability in svc_oscheck utility.
local
low complexity
dell CWE-78
7.8
2024-02-12 CVE-2024-0169 Cross-site Scripting vulnerability in Dell Unity Operating Environment 5.0.7.0.5.008/5.2.0.0.5.173/5.3.0.0.5.120
Dell Unity, versions prior to 5.4, contains a cross-site scripting (XSS) vulnerability.
network
low complexity
dell CWE-79
5.4