Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-29096 Cross-site Scripting vulnerability in Dell Wyse Management Suite
Dell Wyse Management Suite 3.6.1 and below contains a Reflected Cross-Site Scripting Vulnerability in saveGroupConfigurations page.
network
dell CWE-79
3.5
2022-06-24 CVE-2022-29097 Path Traversal vulnerability in Dell Wyse Management Suite
Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API.
network
low complexity
dell CWE-22
4.0
2022-06-23 CVE-2022-26862 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.2
2022-06-23 CVE-2022-26863 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.2
2022-06-23 CVE-2022-26864 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.2
2022-06-10 CVE-2022-29092 Uncontrolled Search Path Element vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability.
local
low complexity
dell CWE-427
7.2
2022-06-10 CVE-2022-29093 Path Traversal vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability.
local
low complexity
dell CWE-22
3.6
2022-06-10 CVE-2022-29094 Path Traversal vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion/overwrite vulnerability.
local
low complexity
dell CWE-22
3.6
2022-06-10 CVE-2022-29095 Cross-site Scripting vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability.
network
high complexity
dell CWE-79
7.6
2022-06-02 CVE-2022-22556 Resource Exhaustion vulnerability in Dell Powerstoreos
Dell PowerStore contains an Uncontrolled Resource Consumption Vulnerability in PowerStore User Interface.
network
low complexity
dell CWE-400
7.8