Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-20 | CVE-2023-23691 | HTTP Request Smuggling vulnerability in Dell products Dell EMC PV ME5, versions ME5.1.0.0.0 and ME5.1.0.1.0, contains a Client-side desync Vulnerability. | 8.8 |
| 2023-01-19 | CVE-2023-23690 | Improper Certificate Validation vulnerability in Dell Cloud Mobility for Dell EMC Storage 1.3.0/1.3.1 Cloud Mobility for Dell EMC Storage, versions 1.3.0.X and below contains an Improper Check for Certificate Revocation vulnerability. | 7.0 |
| 2023-01-18 | CVE-2022-45103 | Information Exposure vulnerability in Dell products Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. | 6.5 |
| 2023-01-18 | CVE-2022-34399 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dell products Dell Alienware m17 R5 BIOS version prior to 1.2.2 contain a buffer access vulnerability. | 2.3 |
| 2023-01-18 | CVE-2022-34435 | Improper Input Validation vulnerability in Dell Idrac9 Firmware Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. | 4.9 |
| 2023-01-18 | CVE-2022-34436 | Improper Input Validation vulnerability in Dell Idrac8 Firmware Dell iDRAC8 version 2.83.83.83 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. | 4.9 |
| 2023-01-18 | CVE-2022-34457 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Command|Configure Dell command configuration, version 4.8 and prior, contains improper folder permission when installed not to default path but to non-secured path which leads to privilege escalation. | 7.8 |
| 2023-01-18 | CVE-2022-34442 | Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00 Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a contain a Hard-coded Cryptographic Key vulnerability. | 9.8 |
| 2023-01-18 | CVE-2022-34462 | Use of Hard-coded Credentials vulnerability in Dell EMC Secure Connect Gateway Policy Manager 5.10.00.00/5.12.00.00 Dell EMC SCG Policy Manager, versions from 5.10 to 5.12, contain(s) a Hard-coded Password Vulnerability. | 7.8 |
| 2023-01-18 | CVE-2022-32490 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 7.8 |