Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-01 | CVE-2021-21517 | XXE vulnerability in Dell EMC SRS Policy Manager 6.6/6.8.3/6.9.0 SRS Policy Manager 6.X is affected by an XML External Entity Injection (XXE) vulnerability due to a misconfigured XML parser that processes user-supplied DTD input without sufficient validation. | 7.2 |
| 2021-03-01 | CVE-2021-21515 | Cross-site Scripting vulnerability in Dell EMC Sourceone 7.2 Dell EMC SourceOne, versions 7.2SP10 and prior, contain a Stored Cross-Site Scripting vulnerability. | 5.4 |
| 2021-02-19 | CVE-2021-21512 | Information Exposure vulnerability in Dell EMC Powerprotect Cyber Recovery 19.7.0.1 Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. | 6.0 |
| 2021-02-15 | CVE-2021-21511 | Unspecified vulnerability in Dell products Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. | 8.1 |
| 2021-02-09 | CVE-2021-21502 | Improper Authentication vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. | 9.8 |
| 2021-02-09 | CVE-2020-26196 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. | 5.5 |
| 2021-02-09 | CVE-2020-26195 | Improper Handling of Exceptional Conditions vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. | 5.3 |
| 2021-02-09 | CVE-2020-26194 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs 8.1.2/8.2.2 Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. | 7.8 |
| 2021-02-09 | CVE-2020-26193 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. | 7.8 |
| 2021-02-09 | CVE-2020-26192 | Missing Authentication for Critical Function vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. | 7.8 |