Vulnerabilities > Dell > Enterprise Sonic Distribution
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-08 | CVE-2024-45763 | OS Command Injection vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. | 7.2 |
| 2024-11-08 | CVE-2024-45764 | Unspecified vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. | 9.8 |
| 2024-11-08 | CVE-2024-45765 | OS Command Injection vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. | 7.2 |
| 2023-02-02 | CVE-2023-24574 | Resource Exhaustion vulnerability in Dell Enterprise Sonic Distribution Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component. | 7.5 |
| 2022-10-10 | CVE-2022-34425 | Use of Hard-coded Credentials vulnerability in Dell Enterprise Sonic Distribution 4.0.0/4.0.1 Dell Enterprise SONiC OS, 4.0.0, 4.0.1, contain a cryptographic key vulnerability in SSH. | 7.5 |