Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2023-02-10 CVE-2023-23698 Unspecified vulnerability in Dell Alienware Update and Command Update
Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component.
local
low complexity
dell
7.1
2023-02-10 CVE-2023-24569 Improper Input Validation vulnerability in Dell Alienware Command Center 5.4.35.0/5.5.37.0
Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability.
local
low complexity
dell CWE-20
7.8
2023-02-10 CVE-2023-24573 Unspecified vulnerability in Dell Command | Monitor
Dell Command | Monitor versions prior to 10.9 contain an arbitrary folder delete vulnerability during uninstallation.
local
low complexity
dell
7.1
2023-02-10 CVE-2022-24410 Cleartext Storage of Sensitive Information vulnerability in Dell products
Dell BIOS contains an information exposure vulnerability.
high complexity
dell CWE-312
4.2
2023-02-10 CVE-2022-34452 Exposure of Resource to Wrong Sphere vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3, 3.2*, 3.1 & 3.0* contains sensitive information disclosure vulnerability.
network
low complexity
dell CWE-668
2.7
2023-02-10 CVE-2022-34454 Out-of-bounds Write vulnerability in Dell EMC Powerscale Onefs 9.1.0.0/9.2.1.0/9.3.0.0
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow.
local
low complexity
dell CWE-787
6.7
2023-02-07 CVE-2023-23696 Incorrect Authorization vulnerability in Dell Command | Intel Vpro OUT of Band
Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability.
local
low complexity
dell CWE-863
7.8
2023-02-03 CVE-2023-24576 Code Injection vulnerability in Dell EMC Networker
EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the NetWorker Client execution service (nsrexecd) irrespective of any auth used.
network
low complexity
dell CWE-94
critical
9.8
2023-02-02 CVE-2023-24574 Resource Exhaustion vulnerability in Dell Enterprise Sonic Distribution
Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component.
network
low complexity
dell CWE-400
7.5
2023-02-01 CVE-2023-22573 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool.
local
low complexity
dell CWE-532
5.5