Vulnerabilities > Dell > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-11 CVE-2022-34446 Unspecified vulnerability in Dell Powerpath Management Appliance 3.2/3.3
PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability.
network
low complexity
dell
8.1
2023-02-11 CVE-2022-34447 OS Command Injection vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerability.
network
low complexity
dell CWE-78
7.2
2023-02-11 CVE-2022-34448 Cross-Site Request Forgery (CSRF) vulnerability in Dell Powerpath Management Appliance
PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vulnerability.
network
low complexity
dell CWE-352
8.8
2023-02-11 CVE-2022-45104 OS Command Injection vulnerability in Dell products
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain a command execution vulnerability.
network
low complexity
dell CWE-78
8.8
2023-02-10 CVE-2023-23698 Unspecified vulnerability in Dell Alienware Update and Command Update
Dell Command | Update, Dell Update, and Alienware Update versions before 4.6.0 and 4.7.1 contain Insecure Operation on Windows Junction in the installer component.
local
low complexity
dell
7.1
2023-02-10 CVE-2023-24569 Improper Input Validation vulnerability in Dell Alienware Command Center 5.4.35.0/5.5.37.0
Dell Alienware Command Center versions 5.5.37.0 and prior contain an Improper Input validation vulnerability.
local
low complexity
dell CWE-20
7.8
2023-02-10 CVE-2023-24573 Unspecified vulnerability in Dell Command | Monitor 10.9
Dell Command | Monitor versions prior to 10.9 contain an arbitrary folder delete vulnerability during uninstallation.
local
low complexity
dell
7.1
2023-02-07 CVE-2023-23696 Incorrect Authorization vulnerability in Dell Command | Intel Vpro OUT of Band
Dell Command Intel vPro Out of Band, versions prior to 4.3.1, contain an Improper Authorization vulnerability.
local
low complexity
dell CWE-863
7.8
2023-02-02 CVE-2023-24574 Resource Exhaustion vulnerability in Dell Enterprise Sonic Distribution
Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication component.
network
low complexity
dell CWE-400
7.5
2023-02-01 CVE-2023-22574 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module.
network
low complexity
dell CWE-532
8.1