Vulnerabilities > Dell > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2023-22575 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog.
network
low complexity
dell CWE-532
8.8
2023-02-01 CVE-2023-22572 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password api.
local
low complexity
dell CWE-532
7.8
2023-02-01 CVE-2023-23692 OS Command Injection vulnerability in Dell EMC Data Domain OS
Dell EMC prior to version DDOS 7.9 contain(s) an OS command injection Vulnerability.
network
low complexity
dell CWE-78
8.8
2023-02-01 CVE-2022-34396 Uncontrolled Search Path Element vulnerability in Dell Openmanage Server Administrator
Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and earlier contains a DLL Injection Vulnerability.
local
low complexity
dell CWE-427
7.8
2023-02-01 CVE-2022-34398 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell products
Dell BIOS contains a Time-of-check Time-of-use vulnerability.
local
high complexity
dell CWE-367
7.0
2023-02-01 CVE-2022-34403 Out-of-bounds Write vulnerability in Dell products
Dell BIOS contains a Stack based buffer overflow vulnerability.
local
low complexity
dell CWE-787
8.8
2023-02-01 CVE-2022-45099 Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password.
local
low complexity
dell CWE-276
7.8
2023-02-01 CVE-2022-46679 Unspecified vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability.
network
low complexity
dell
7.5
2023-02-01 CVE-2022-34400 Out-of-bounds Write vulnerability in Dell products
Dell BIOS contains a heap buffer overflow vulnerability.
local
low complexity
dell CWE-787
7.1
2023-02-01 CVE-2022-34443 Improper Input Validation vulnerability in Dell Rugged Control Center
Dell Rugged Control Center, versions prior to 4.5, contain an Improper Input Validation in the Service EndPoint.
local
low complexity
dell CWE-20
7.8