Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-08 | CVE-2025-21102 | Insufficiently Protected Credentials vulnerability in Dell products Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. | 4.4 |
| 2025-01-08 | CVE-2024-47239 | Unspecified vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. | 6.5 |
| 2025-01-07 | CVE-2025-22395 | Unspecified vulnerability in Dell Update Package Framework 19.1.0.413/3.8.3.67/4.9.4.36 Dell Update Package Framework, versions prior to 22.01.02, contain(s) a Local Privilege Escalation Vulnerability. | 7.8 |
| 2025-01-06 | CVE-2024-47475 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.2.x through 9.8.0.x contains an incorrect permission assignment for critical resource vulnerability. | 5.5 |
| 2024-12-26 | CVE-2024-51540 | Integer Overflow or Wraparound vulnerability in Dell Elastic Cloud Storage Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. | 6.5 |
| 2024-12-25 | CVE-2024-52534 | Authentication Bypass by Capture-replay vulnerability in Dell Elastic Cloud Storage Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. | 5.4 |
| 2024-12-25 | CVE-2024-52543 | Exposure of Resource to Wrong Sphere vulnerability in Dell Nativeedge Orchestrator Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure Permissions vulnerability. | 4.4 |
| 2024-12-25 | CVE-2024-47978 | Unspecified vulnerability in Dell Nativeedge Orchestrator Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Execution with Unnecessary Privileges vulnerability. | 7.8 |
| 2024-12-25 | CVE-2024-52535 | Link Following vulnerability in Dell products Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link (symlink) attack vulnerability in the software remediation component. | 8.8 |
| 2024-12-25 | CVE-2024-53291 | Unspecified vulnerability in Dell Nativeedge Orchestrator Dell NativeEdge, version(s) 2.1.0.0, contain(s) an Exposure of Sensitive Information Through Metadata vulnerability. | 7.5 |