Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-08 | CVE-2021-21558 | Information Exposure Through Log Files vulnerability in Dell EMC Networker Dell EMC NetWorker, 18.x, 19.1.x, 19.2.x 19.3.x, 19.4 and 19.4.0.1, contains an Information Disclosure vulnerability. | 4.4 |
| 2021-06-08 | CVE-2021-21559 | Improper Certificate Validation vulnerability in Dell EMC Networker Dell EMC NetWorker, versions 18.x, 19.1.x, 19.2.x 19.3.x, 19.4, and 19.4.0.1 contain an Improper Certificate Validation vulnerability in the client (NetWorker Management Console) components which uses SSL encrypted connection in order to communicate with the application server. | 5.3 |
| 2021-05-21 | CVE-2021-21549 | Cross-Site Request Forgery (CSRF) vulnerability in Dell Xtremio Management Server 6.3.0 Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. | 8.8 |
| 2021-05-06 | CVE-2021-21505 | Insecure Default Initialization of Resource vulnerability in Dell EMC Integrated System for Microsoft Azure Stack HUB Firmware 1906/2011 Dell EMC Integrated System for Microsoft Azure Stack Hub, versions 1906 – 2011, contain an undocumented default iDRAC account. | 9.8 |
| 2021-05-06 | CVE-2021-21527 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs 9.0.0.0/9.1.0.0 Dell PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. | 6.7 |
| 2021-05-06 | CVE-2021-21550 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell EMC PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. | 6.7 |
| 2021-05-04 | CVE-2021-21551 | Unspecified vulnerability in Dell Dbutil Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. | 7.8 |
| 2021-04-30 | CVE-2021-21547 | Cleartext Storage of Sensitive Information vulnerability in Dell products Dell EMC Unity, UnityVSA, and Unity XT versions prior to 5.0.7.0.5.008 contain a plain-text password storage vulnerability when the Dell Upgrade Readiness Utility is run on the system. | 6.7 |
| 2021-04-30 | CVE-2021-21540 | Out-of-bounds Write vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. | 8.1 |
| 2021-04-30 | CVE-2021-21539 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. | 7.1 |