Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2023-02-11 CVE-2022-34392 Insufficient Session Expiration vulnerability in Dell Supportassist for Home PCS
SupportAssist for Home PCs (versions 3.11.4 and prior) contain an insufficient session expiration Vulnerability.
local
low complexity
dell CWE-613
5.5
5.5
2023-02-11 CVE-2022-34404 Improper Certificate Validation vulnerability in Dell System Update 1.9/1.9.1
Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module.
local
low complexity
dell CWE-295
6.0
6.0
2023-02-11 CVE-2022-34444 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, versions 9.2.0.x through 9.4.0.x contain an information vulnerability.
network
low complexity
dell CWE-327
7.5
7.5
2023-02-11 CVE-2022-34445 Insufficiently Protected Credentials vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password.
local
low complexity
dell CWE-522
4.4
4.4
2023-02-11 CVE-2022-34446 Unspecified vulnerability in Dell Powerpath Management Appliance 3.2/3.3
PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability.
network
low complexity
dell
8.1
8.1
2023-02-11 CVE-2022-34447 OS Command Injection vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerability.
network
low complexity
dell CWE-78
7.2
7.2
2023-02-11 CVE-2022-34448 Cross-Site Request Forgery (CSRF) vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability.
network
low complexity
dell CWE-352
8.8
8.8
2023-02-11 CVE-2022-34449 Use of Hard-coded Credentials vulnerability in Dell Powerpath Management Appliance 3.2/3.3
PowerPath Management Appliance with versions 3.3 & 3.2* contains a Hardcoded Cryptographic Keys vulnerability.
local
low complexity
dell CWE-798
6.0
6.0
2023-02-11 CVE-2022-34450 Unspecified vulnerability in Dell Powerpath Management Appliance 3.3
PowerPath Management Appliance with version 3.3 contains Privilege Escalation vulnerability.
local
low complexity
dell
6.7
6.7
2023-02-11 CVE-2022-34451 Cross-site Scripting vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Stored Cross-site Scripting Vulnerability.
network
low complexity
dell CWE-79
4.8
4.8