Vulnerabilities > Dell > High

DATE CVE VULNERABILITY TITLE RISK
2022-07-21 CVE-2022-33923 OS Command Injection vulnerability in Dell products
Dell PowerStore, versions prior to 3.0.0.0, contains an OS Command Injection vulnerability in PowerStore T environment.
local
low complexity
dell CWE-78
7.8
7.8
2022-07-21 CVE-2022-34367 Cross-Site Request Forgery (CSRF) vulnerability in Dell EMC Data Protection Central
Dell EMC Data Protection Central versions 19.1, 19.2, 19.3, 19.4, 19.5, 19.6, contain(s) a Cross-Site Request Forgery Vulnerability.
network
low complexity
dell CWE-352
8.8
8.8
2022-07-11 CVE-2020-29505 Insufficient Entropy vulnerability in multiple products
Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.5.2, contain a Key Management Error Vulnerability.
network
low complexity
dell oracle CWE-331
7.5
7.5
2022-07-11 CVE-2020-35164 Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability.
network
high complexity
dell oracle
8.1
8.1
2022-07-07 CVE-2022-32481 Unspecified vulnerability in Dell Powerprotect Cyber Recovery
Dell PowerProtect Cyber Recovery, versions prior to 19.11, contain a privilege escalation vulnerability on virtual appliance deployments.
local
low complexity
dell
7.8
7.8
2022-06-23 CVE-2022-26862 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.8
7.8
2022-06-23 CVE-2022-26863 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.8
7.8
2022-06-23 CVE-2022-26864 Improper Input Validation vulnerability in Dell products
Prior Dell BIOS versions contain an Input Validation vulnerability.
local
low complexity
dell CWE-20
7.8
7.8
2022-06-10 CVE-2022-29092 Uncontrolled Search Path Element vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.11.0 and versions prior) and Dell SupportAssist Client Commercial versions (3.2.0 and versions prior) contain a privilege escalation vulnerability.
local
low complexity
dell CWE-427
7.8
7.8
2022-06-10 CVE-2022-29093 Path Traversal vulnerability in Dell products
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist Client Commercial versions (3.1.1 and versions prior) contain an arbitrary file deletion vulnerability.
local
low complexity
dell CWE-22
7.1
7.1