Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-28 | CVE-2021-36285 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell products Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. | 4.4 |
| 2021-09-28 | CVE-2021-36286 | Link Following vulnerability in Dell Supportassist Client Consumer Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. | 7.1 |
| 2021-09-28 | CVE-2021-36297 | Untrusted Search Path vulnerability in Dell Supportassist for Home PCS SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstallerTool.exe installation for executing arbitrary dll's, | 7.8 |
| 2021-08-16 | CVE-2021-21568 | Unspecified vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an insufficient logging vulnerability. | 4.3 |
| 2021-08-16 | CVE-2021-21592 | Improper Handling of Exceptional Conditions vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x improperly handle an exceptional condition. | 6.5 |
| 2021-08-16 | CVE-2021-21594 | Information Exposure Through Query Strings in GET Request vulnerability in Dell EMC Powerscale Onefs 8.2.2/9.0.0.0/9.1.0 Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. | 5.3 |
| 2021-08-16 | CVE-2021-21595 | Command Injection vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. | 6.7 |
| 2021-08-16 | CVE-2021-21599 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. | 6.7 |
| 2021-08-16 | CVE-2021-36278 | Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. | 5.5 |
| 2021-08-16 | CVE-2021-36279 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. | 7.8 |