Vulnerabilities > Dell > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-12 | CVE-2022-22561 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an improper restriction of excessive authentication attempts. | 9.8 |
| 2022-04-08 | CVE-2021-36287 | OS Command Injection vulnerability in Dell EMC Unity Operating Environment Dell VNX2 for file version 8.1.21.266 and earlier, contain an unauthenticated remote code execution vulnerability which may lead unauthenticated users to execute commands on the system. | 9.8 |
| 2022-04-08 | CVE-2021-36288 | Path Traversal vulnerability in Dell EMC Unity Operating Environment Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which may lead unauthenticated users to read/write restricted files | 9.1 |
| 2022-04-08 | CVE-2022-26851 | Use of Insufficiently Random Values vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, 8.2.2-9.3.x, contains a predictable file name from observable state vulnerability. | 9.1 |
| 2022-04-08 | CVE-2022-26852 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator. | 9.8 |
| 2022-04-08 | CVE-2022-26854 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain risky cryptographic algorithms. | 9.8 |
| 2022-02-09 | CVE-2021-36302 | Improper Privilege Management vulnerability in Dell EMC Integrated System for Microsoft Azure Stack HUB Firmware All Dell EMC Integrated System for Microsoft Azure Stack Hub versions contain a privilege escalation vulnerability. | 9.9 |
| 2022-01-25 | CVE-2021-36294 | Use of Insufficiently Random Values vulnerability in Dell EMC Unity Operating Environment Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. | 9.8 |
| 2022-01-21 | CVE-2022-22553 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell EMC Appsync 3.9.0.0/4.2.0.0/4.3.0.0 Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability that can be exploited from UI and CLI. | 9.8 |
| 2021-12-21 | CVE-2021-36336 | Deserialization of Untrusted Data vulnerability in Dell Wyse Management Suite Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system. | 9.8 |