Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2021-04-30 CVE-2021-21543 Cross-site Scripting vulnerability in Dell Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain multiple stored cross-site scripting vulnerabilities.
network
low complexity
dell CWE-79
4.8
2021-04-30 CVE-2021-21542 Cross-site Scripting vulnerability in Dell Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.10.00 contain multiple stored cross-site scripting vulnerabilities.
network
low complexity
dell CWE-79
4.8
2021-04-30 CVE-2021-21541 Cross-site Scripting vulnerability in Dell Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability.
network
low complexity
dell CWE-79
6.1
2021-04-30 CVE-2021-21537 Information Exposure vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
5.5
2021-04-30 CVE-2021-21536 Information Exposure vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
5.5
2021-04-30 CVE-2021-21535 Missing Authentication for Critical Function vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01
Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function vulnerability.
local
low complexity
dell CWE-306
7.8
2021-04-30 CVE-2021-21534 Information Exposure vulnerability in Dell Hybrid Client 1.0/1.1/1.1.01
Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability.
local
low complexity
dell CWE-200
3.3
2021-04-20 CVE-2021-21526 OS Command Injection vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains a privilege escalation in SmartLock compliance mode that may allow compadmin to execute arbitrary commands as root.
local
low complexity
dell CWE-78
6.7
2021-04-20 CVE-2020-26197 Cleartext Transmission of Sensitive Information vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability.
network
low complexity
dell CWE-319
critical
9.1
2021-04-12 CVE-2021-21545 Uncontrolled Search Path Element vulnerability in Dell Peripheral Manager
Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user.
local
low complexity
dell CWE-427
7.8