Vulnerabilities > Dell > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-07-11 CVE-2020-35166 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
9.8
2022-07-11 CVE-2020-35167 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
9.8
2022-07-11 CVE-2020-35168 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
low complexity
dell oracle
critical
9.8
2022-07-11 CVE-2020-35169 Improper Input Validation vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain an Improper Input Validation Vulnerability.
network
low complexity
dell oracle CWE-20
critical
9.8
2022-07-07 CVE-2022-33936 Unspecified vulnerability in Dell Cloud Mobility for Dell EMC Storage 1.3.0
Cloud Mobility for Dell EMC Storage, 1.3.0.XXX contains a RCE vulnerability.
network
low complexity
dell
critical
9.8
2022-06-28 CVE-2022-31230 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Powerscale Onefs 9.0.0.0/9.1.0.0
Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain broken or risky cryptographic algorithm.
network
low complexity
dell CWE-327
critical
9.8
2022-06-10 CVE-2022-29095 Cross-site Scripting vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.10.4 and prior) and Dell SupportAssist Client Commercial versions (3.1.1 and prior) contain a cross-site scripting vulnerability.
network
low complexity
dell CWE-79
critical
9.6
2022-06-02 CVE-2022-26869 Exposure of Resource to Wrong Sphere vulnerability in Dell Powerstoreos
Dell PowerStore versions 2.0.0.x, 2.0.1.x and 2.1.0.x contains an open port vulnerability.
network
low complexity
dell CWE-668
critical
9.8
2022-06-02 CVE-2022-29084 Improper Restriction of Excessive Authentication Attempts vulnerability in Dell products
Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI.
network
low complexity
dell CWE-307
critical
9.8
2022-05-26 CVE-2022-24422 Improper Authentication vulnerability in Dell Idrac9
Dell iDRAC9 versions 5.00.00.00 and later but prior to 5.10.10.00, contain an improper authentication vulnerability.
network
low complexity
dell CWE-287
critical
9.8