Vulnerabilities > Dell > High

DATE CVE VULNERABILITY TITLE RISK
2023-05-22 CVE-2023-25537 Out-of-bounds Write vulnerability in Dell products
Dell PowerEdge 14G server BIOS versions prior to 2.18.1 and Dell Precision BIOS versions prior to 2.18.2, contain an Out of Bounds write vulnerability.
local
low complexity
dell CWE-787
7.8
2023-05-19 CVE-2023-28045 Missing Encryption of Sensitive Data vulnerability in Dell Cloudiq Collector 1.10.2
Dell CloudIQ Collector version 1.10.2 contains a missing encryption of sensitive data vulnerability.
network
low complexity
dell CWE-311
7.1
2023-05-16 CVE-2023-28076 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Cloudlink
CloudLink 7.1.2 and all prior versions contain a broken or risky cryptographic algorithm vulnerability.
network
low complexity
dell CWE-327
7.5
2023-05-05 CVE-2023-28068 Incorrect Permission Assignment for Critical Resource vulnerability in Dell Command | Monitor
Dell Command Monitor, versions 10.9 and prior, contains an improper folder permission vulnerability.
local
low complexity
dell CWE-732
7.8
2023-05-04 CVE-2023-25934 Improper Verification of Cryptographic Signature vulnerability in Dell Elastic Cloud Storage 3.0/3.8.0.1
DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability.
network
low complexity
dell CWE-347
7.5
2023-05-03 CVE-2023-28070 Improper Access Control vulnerability in Dell Alienware Command Center 5.4.35.0/5.5.37.0/5.5.40.0
Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability.
local
low complexity
dell CWE-284
7.8
2023-04-20 CVE-2023-28047 Least Privilege Violation vulnerability in Dell Display Manager 2.0.0/2.1.0
Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder creation vulnerability during installation.
local
low complexity
dell CWE-272
7.8
2023-04-11 CVE-2023-28062 Unspecified vulnerability in Dell Powerprotect Data Manager 19.10/19.11/19.12
Dell PPDM versions 19.12, 19.11 and 19.10, contain an improper access control vulnerability.
network
low complexity
dell
8.8
2023-04-07 CVE-2023-28051 Unspecified vulnerability in Dell Power Manager 3.10/3.3
Dell Power Manager, versions 3.10 and prior, contains an Improper Access Control vulnerability.
local
low complexity
dell
7.8
2023-04-06 CVE-2023-28046 Least Privilege Violation vulnerability in Dell Display Manager 2.0.0/2.1.0
Dell Display Manager, versions 2.1.0 and prior, contains an arbitrary file or folder deletion vulnerability during uninstallation A local low privilege attacker could potentially exploit this vulnerability, leading to the deletion of arbitrary files on the operating system with high privileges.
local
low complexity
dell CWE-272
7.1