Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2023-28049 | Improper Privilege Management vulnerability in Dell Command | Monitor 10.9 Dell Command | Monitor, versions prior to 10.9, contain an arbitrary folder deletion vulnerability. | 7.1 |
| 2024-02-06 | CVE-2024-22433 | Unspecified vulnerability in Dell Data Protection Search Dell Data Protection Search 19.2.0 and above contain an exposed password opportunity in plain text when using LdapSettings.get_ldap_info in DP Search. | 9.8 |
| 2024-02-02 | CVE-2020-29504 | Improper Certificate Validation vulnerability in Dell products Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain a Missing Required Cryptographic Step Vulnerability. | 9.8 |
| 2024-02-02 | CVE-2021-21575 | Information Exposure Through Discrepancy vulnerability in Dell Bsafe Micro-Edition-Suite Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Observable Timing Discrepancy Vulnerability. | 9.8 |
| 2024-02-02 | CVE-2022-34381 | Unspecified vulnerability in Dell Bsafe Crypto-J and Bsafe Ssl-J Dell BSAFE SSL-J version 7.0 and all versions prior to 6.5, and Dell BSAFE Crypto-J versions prior to 6.2.6.1 contain an unmaintained third-party component vulnerability. | 9.8 |
| 2024-02-01 | CVE-2024-22430 | Incorrect Default Permissions vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.x through 9.6.0.x contains an incorrect default permissions vulnerability. | 5.5 |
| 2024-02-01 | CVE-2024-22449 | Missing Authentication for Critical Function vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 9.0.0.x through 9.6.0.x contains a missing authentication for critical function vulnerability. | 7.8 |
| 2024-01-25 | CVE-2024-22432 | Insufficiently Protected Credentials vulnerability in Dell Networker Networker 19.9 and all prior versions contains a Plain-text Password stored in temporary config file during backup duration in NMDA MySQL Database backups. | 6.5 |
| 2024-01-24 | CVE-2024-22229 | Improper Encoding or Escaping of Output vulnerability in Dell products Dell Unity, versions prior to 5.4, contain a vulnerability whereby log messages can be spoofed by an authenticated attacker. | 4.3 |
| 2024-01-24 | CVE-2023-44281 | Unspecified vulnerability in Dell Pair Dell Pair Installer version prior to 1.2.1 contains an elevation of privilege vulnerability. | 7.1 |