Vulnerabilities > Dell
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-31 | CVE-2020-5344 | Out-of-bounds Write vulnerability in Dell Idrac7 Firmware, Idrac8 Firmware and Idrac9 Firmware Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. | 9.8 |
| 2020-03-18 | CVE-2019-3762 | Improper Certificate Validation vulnerability in Dell products Data Protection Central versions 1.0, 1.0.1, 18.1, 18.2, and 19.1 contains an Improper Certificate Chain of Trust Vulnerability. | 7.5 |
| 2020-03-18 | CVE-2019-18582 | Code Injection vulnerability in Dell products Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server-side template injection vulnerability in the REST API. | 7.2 |
| 2020-03-18 | CVE-2019-18581 | Missing Authorization vulnerability in Dell products Dell EMC Data Protection Advisor versions 6.3, 6.4, 6.5, 18.2 versions prior to patch 83, and 19.1 versions prior to patch 71 contain a server missing authorization vulnerability in the REST API. | 7.2 |
| 2020-03-13 | CVE-2019-3770 | Cross-site Scripting vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite versions prior to 1.4.1 contain a stored cross-site scripting vulnerability when unregistering a device. | 6.4 |
| 2020-03-13 | CVE-2019-3769 | Cross-site Scripting vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite versions prior to 1.4.1 contain a stored cross-site scripting vulnerability. | 6.4 |
| 2020-03-13 | CVE-2019-18578 | Cross-site Scripting vulnerability in Dell Xtremio Management Server Dell EMC XtremIO XMS versions prior to 6.3.0 contain a stored cross-site scripting vulnerability. | 9.0 |
| 2020-03-13 | CVE-2019-18577 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Xtremio Management Server Dell EMC XtremIO XMS versions prior to 6.3.0 contain an incorrect permission assignment vulnerability. | 6.7 |
| 2020-03-13 | CVE-2019-18576 | Information Exposure Through Log Files vulnerability in Dell Xtremio Management Server Dell EMC XtremIO XMS versions prior to 6.3.0 contain an information disclosure vulnerability where OS users’ passwords are logged in local files. | 6.7 |
| 2020-03-09 | CVE-2020-5342 | Incorrect Default Permissions vulnerability in Dell Digital Delivery Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. | 7.8 |