Vulnerabilities > Dell

DATE CVE VULNERABILITY TITLE RISK
2021-02-15 CVE-2021-21511 Unspecified vulnerability in Dell products
Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI.
network
low complexity
dell
8.1
8.1
2021-02-09 CVE-2021-21502 Improper Authentication vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability.
network
low complexity
dell CWE-287
critical
 9.8
9.8
2021-02-09 CVE-2020-26196 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue.
local
low complexity
dell CWE-732
5.5
5.5
2021-02-09 CVE-2020-26195 Improper Handling of Exceptional Conditions vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user.
network
low complexity
dell CWE-755
5.3
5.3
2021-02-09 CVE-2020-26194 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Powerscale Onefs 8.1.2/8.2.2
Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability.
local
low complexity
dell CWE-732
7.8
7.8
2021-02-09 CVE-2020-26193 OS Command Injection vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability.
local
low complexity
dell CWE-78
7.8
7.8
2021-02-09 CVE-2020-26192 Missing Authentication for Critical Function vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability.
local
low complexity
dell CWE-306
7.8
7.8
2021-02-09 CVE-2020-26191 Unspecified vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability.
local
low complexity
dell
7.8
7.8
2021-01-14 CVE-2020-29495 OS Command Injection vulnerability in Dell products
DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer.
network
low complexity
dell CWE-78
critical
 10.0
10
2021-01-14 CVE-2020-29494 Path Traversal vulnerability in Dell products
Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM.
network
low complexity
dell CWE-22
8.7
8.7