Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-13 | CVE-2023-24572 | Link Following vulnerability in Dell Command | Integration Suite for System Center 6.2.0 Dell Command | Integration Suite for System Center, versions before 6.4.0 contain an arbitrary folder delete vulnerability during uninstallation. | 3.3 |
| 2023-02-11 | CVE-2022-34384 | Improper Privilege Management vulnerability in Dell products Dell SupportAssist Client Consumer (version 3.11.1 and prior), SupportAssist Client Commercial (version 3.2 and prior), Dell Command | Update, Dell Update, and Alienware Update versions before 4.5 contain a Local Privilege Escalation Vulnerability in the Advanced Driver Restore component. | 7.8 |
| 2023-02-11 | CVE-2022-34385 | Inadequate Encryption Strength vulnerability in Dell products SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
| 2023-02-11 | CVE-2022-34386 | Use of Hard-coded Credentials vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain cryptographic weakness vulnerability. | 5.5 |
| 2023-02-11 | CVE-2022-34387 | Exposure of Resource to Wrong Sphere vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain a privilege escalation vulnerability. | 7.8 |
| 2023-02-11 | CVE-2022-34388 | Cleartext Storage of Sensitive Information vulnerability in Dell products Dell SupportAssist for Home PCs (version 3.11.4 and prior) and SupportAssist for Business PCs (version 3.2.0 and prior) contain information disclosure vulnerability. | 7.1 |
| 2023-02-11 | CVE-2022-34389 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell products Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component. | 5.3 |
| 2023-02-11 | CVE-2022-34392 | Insufficient Session Expiration vulnerability in Dell Supportassist for Home PCS SupportAssist for Home PCs (versions 3.11.4 and prior) contain an insufficient session expiration Vulnerability. | 5.5 |
| 2023-02-11 | CVE-2022-34404 | Improper Certificate Validation vulnerability in Dell System Update 1.9/1.9.1 Dell System Update, version 2.0.0 and earlier, contains an Improper Certificate Validation in data parser module. | 6.0 |
| 2023-02-11 | CVE-2022-34444 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS, versions 9.2.0.x through 9.4.0.x contain an information vulnerability. | 7.5 |