Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2021-01-14 CVE-2020-29495 OS Command Injection vulnerability in Dell products
DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer.
network
low complexity
dell CWE-78
critical
10.0
2021-01-14 CVE-2020-29494 Path Traversal vulnerability in Dell products
Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM.
network
low complexity
dell CWE-22
5.5
2021-01-14 CVE-2020-29493 SQL Injection vulnerability in Dell products
DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer.
network
low complexity
dell CWE-89
7.5
2021-01-08 CVE-2020-26186 Exposure of Resource TO Wrong Sphere vulnerability in Dell Inspiron 5675 Firmware
Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability.
local
low complexity
dell CWE-668
7.2
2021-01-05 CVE-2020-35170 Cross-Site Scripting vulnerability in Dell Powermax OS and Unisphere
Dell EMC Unisphere for PowerMax versions prior to 9.1.0.9, Dell EMC Unisphere for PowerMax versions prior to 9.0.2.16, and Dell EMC PowerMax OS 5978.221.221 and 5978.479.479 contain a Cross-Site Scripting (XSS) vulnerability.
network
dell CWE-79
3.5
2021-01-05 CVE-2020-29502 Cleartext Storage of Sensitive Information vulnerability in Dell EMC Powerstore Firmware
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments.
local
low complexity
dell CWE-312
4.6
2021-01-05 CVE-2020-29501 Cleartext Storage of Sensitive Information vulnerability in Dell EMC Powerstore Firmware
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore X & T environments.
local
low complexity
dell CWE-312
4.6
2021-01-05 CVE-2020-29500 Cleartext Storage of Sensitive Information vulnerability in Dell EMC Powerstore Firmware
Dell EMC PowerStore versions prior to 1.0.3.0.5.007 contain a Plain-Text Password Storage Vulnerability in PowerStore T environments.
local
low complexity
dell CWE-312
4.6
2021-01-05 CVE-2020-29490 Resource Exhaustion vulnerability in Dell products
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a Denial of Service vulnerability on NAS Servers with NFS exports.
network
low complexity
dell CWE-400
4.0
2021-01-05 CVE-2020-29489 Cleartext Storage of Sensitive Information vulnerability in Dell products
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contains a plain-text password storage vulnerability.
local
low complexity
dell CWE-312
4.6