Vulnerabilities > Dell > Networking Os10 > 10.3.2.r2

DATE CVE VULNERABILITY TITLE RISK
2021-11-20 CVE-2021-36306 Unspecified vulnerability in Dell Networking Os10
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains an authentication bypass vulnerability.
network
low complexity
dell
critical
9.8
2021-11-20 CVE-2021-36307 Unspecified vulnerability in Dell Networking Os10
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege escalation vulnerability.
network
low complexity
dell
8.8
2021-11-20 CVE-2021-36308 Improper Authentication vulnerability in Dell Networking Os10
Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability.
network
low complexity
dell CWE-287
critical
9.8
2021-11-20 CVE-2021-36310 Resource Exhaustion vulnerability in Dell Networking Os10
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled resource consumption flaw in its API service.
network
low complexity
dell CWE-400
4.9
2021-11-20 CVE-2021-36319 Exposure of Resource to Wrong Sphere vulnerability in Dell Networking Os10
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability.
local
low complexity
dell CWE-668
3.3
2019-02-04 CVE-2018-15778 Improper Input Validation vulnerability in Dell Networking Os10 10.3.2R2/10.4.0R3S/10.4.1.4
Dell OS10 versions prior to 10.4.2.1 contain a vulnerability caused by lack of proper input validation on the command-line interface (CLI).
local
low complexity
dell CWE-20
7.8
2019-01-18 CVE-2018-15784 Improper Certificate Validation vulnerability in Dell Networking Os10
Dell Networking OS10 versions prior to 10.4.3.0 contain a vulnerability in the Phone Home feature which does not properly validate the server's certificate authority during TLS handshake.
network
high complexity
dell CWE-295
7.4