Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2023-02-11 CVE-2022-34444 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, versions 9.2.0.x through 9.4.0.x contain an information vulnerability.
network
low complexity
dell CWE-327
7.5
7.5
2023-02-11 CVE-2022-34445 Insufficiently Protected Credentials vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password.
local
low complexity
dell CWE-522
4.4
4.4
2023-02-11 CVE-2022-34446 Unspecified vulnerability in Dell Powerpath Management Appliance 3.2/3.3
PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability.
network
low complexity
dell
8.1
8.1
2023-02-11 CVE-2022-34447 OS Command Injection vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerability.
network
low complexity
dell CWE-78
7.2
7.2
2023-02-11 CVE-2022-34448 Cross-Site Request Forgery (CSRF) vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability.
network
low complexity
dell CWE-352
8.8
8.8
2023-02-11 CVE-2022-34449 Use of Hard-coded Credentials vulnerability in Dell Powerpath Management Appliance 3.2/3.3
PowerPath Management Appliance with versions 3.3 & 3.2* contains a Hardcoded Cryptographic Keys vulnerability.
local
low complexity
dell CWE-798
6.0
6.0
2023-02-11 CVE-2022-34450 Unspecified vulnerability in Dell Powerpath Management Appliance 3.3
PowerPath Management Appliance with version 3.3 contains Privilege Escalation vulnerability.
local
low complexity
dell
6.7
6.7
2023-02-11 CVE-2022-34451 Cross-site Scripting vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Stored Cross-site Scripting Vulnerability.
network
low complexity
dell CWE-79
4.8
4.8
2023-02-11 CVE-2022-45104 OS Command Injection vulnerability in Dell products
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability.
network
low complexity
dell CWE-78
8.8
8.8
2023-02-11 CVE-2022-46675 Information Exposure Through an Error Message vulnerability in Dell Wyse Management Suite
Wyse Management Suite Repository 3.8 and below contain an information disclosure vulnerability.
network
low complexity
dell CWE-209
5.3
5.3