Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-10-05 | CVE-2018-11064 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell products Dell EMC Unity OE versions 4.3.0.x and 4.3.1.x and UnityVSA OE versions 4.3.0.x and 4.3.1.x contains an Incorrect File Permissions vulnerability. | 7.8 |
| 2018-10-02 | CVE-2018-11072 | Uncontrolled Search Path Element vulnerability in Dell Digital Delivery Dell Digital Delivery versions prior to 3.5.1 contain a DLL Injection Vulnerability. | 7.8 |
| 2018-09-28 | CVE-2018-1251 | Open Redirect vulnerability in Dell EMC Unity Firmware and EMC Unityvsa Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains a URL Redirection vulnerability. | 8.1 |
| 2018-09-28 | CVE-2018-1250 | Incorrect Authorization vulnerability in Dell EMC Unity Firmware and EMC Unityvsa Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains an Authorization Bypass vulnerability. | 6.5 |
| 2018-09-28 | CVE-2018-1246 | Cross-site Scripting vulnerability in Dell products Dell EMC Unity and UnityVSA contains reflected cross-site scripting vulnerability. | 6.1 |
| 2018-09-14 | CVE-2018-11058 | Out-of-bounds Read vulnerability in multiple products RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition, version prior to 4.0.5.3 (in 4.0.x) contain a Buffer Over-Read vulnerability when parsing ASN.1 data. | 9.8 |
| 2018-09-11 | CVE-2018-11078 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Vplex Geosynchrony 5.4/5.5/6.0 Dell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability. | 7.5 |
| 2018-09-11 | CVE-2018-11070 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Bsafe Crypto-J and RSA Bsafe Ssl-J RSA BSAFE Crypto-J versions prior to 6.2.4 and RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during PKCS #1 unpadding operations, also known as a Bleichenbacher attack. | 5.9 |
| 2018-09-11 | CVE-2018-11069 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Bsafe Ssl-J RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. | 5.9 |
| 2018-09-11 | CVE-2018-11068 | Incomplete Cleanup vulnerability in Dell Bsafe Ssl-J RSA BSAFE SSL-J versions prior to 6.2.4 contain a Heap Inspection vulnerability that could allow an attacker with physical access to the system to recover sensitive key material. | 4.6 |