Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-02 | CVE-2022-34382 | Unspecified vulnerability in Dell Alienware Update, Command Update and Update Dell Command Update, Dell Update and Alienware Update versions prior to 4.6.0 contains a Local Privilege Escalation Vulnerability in the custom catalog configuration. | 7.8 |
| 2022-09-01 | CVE-2022-34372 | Improper Authentication vulnerability in Dell Powerprotect Cyber Recovery Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication bypass vulnerability. | 9.1 |
| 2022-09-01 | CVE-2022-34379 | Improper Authentication vulnerability in Dell Cloudlink Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. | 9.8 |
| 2022-09-01 | CVE-2022-34380 | Improper Authentication vulnerability in Dell Cloudlink Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. | 8.2 |
| 2022-08-31 | CVE-2022-31233 | Incorrect Resource Transfer Between Spheres vulnerability in Dell products Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. | 8.0 |
| 2022-08-31 | CVE-2022-34373 | Path Traversal vulnerability in Dell Command | Integration Suite for System Center Dell Command | Integration Suite for System Center, versions prior to 6.2.0, contains arbitrary file write vulnerability. | 7.8 |
| 2022-08-31 | CVE-2022-34383 | OS Command Injection vulnerability in Dell Edge Gateway 5200 Firmware Dell Edge Gateway 5200 (EGW) versions before 1.03.10 contain an operating system command injection vulnerability. | 8.2 |
| 2022-08-30 | CVE-2022-31232 | OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0 SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. | 9.8 |
| 2022-08-30 | CVE-2022-33935 | Cross-site Scripting vulnerability in Dell EMC Data Protection Advisor Dell EMC Data Protection Advisor versions 19.6 and earlier, contains a Stored Cross Site Scripting, an attacker could potentially exploit this vulnerability, leading to the storage of malicious HTML or JavaScript codes in a trusted application data store. | 5.4 |
| 2022-08-30 | CVE-2022-34368 | Improper Handling of Exceptional Conditions vulnerability in Dell EMC Networker Dell EMC NetWorker 19.2.1.x 19.3.x, 19.4.x, 19.5.x, 19.6.x and 19.7.0.0 contain an Improper Handling of Insufficient Permissions or Privileges vulnerability. | 6.5 |