Vulnerabilities > Dell > EMC Data Protection Central > 19.4

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2022-45102 Improper Encoding or Escaping of Output vulnerability in Dell products
Dell EMC Data Protection Central, versions 19.1 through 19.7, contains a Host Header Injection vulnerability.
network
low complexity
dell CWE-116
6.1
6.1
2022-07-21 CVE-2022-34367 Cross-Site Request Forgery (CSRF) vulnerability in Dell EMC Data Protection Central
Dell EMC Data Protection Central versions 19.1, 19.2, 19.3, 19.4, 19.5, 19.6, contain(s) a Cross-Site Request Forgery Vulnerability.
network
low complexity
dell CWE-352
8.8
8.8
2022-01-24 CVE-2021-36349 Server-Side Request Forgery (SSRF) vulnerability in Dell EMC Data Protection Central
Dell EMC Data Protection Central versions 19.5 and prior contain a Server Side Request Forgery vulnerability in the DPC DNS client processing.
network
low complexity
dell CWE-918
4.3
4.3
2022-01-24 CVE-2021-43588 Improper Input Validation vulnerability in Dell EMC Data Protection Central
Dell EMC Data Protection Central version 19.5 contains an Improper Input Validation Vulnerability.
network
low complexity
dell CWE-20
7.5
7.5