Vulnerabilities > Dell > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-22557 | Insufficiently Protected Credentials vulnerability in Dell Powerstoreos PowerStore contains Plain-Text Password Storage Vulnerability in PowerStore X & T environments running versions 2.0.0.x and 2.0.1.x A locally authenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. | 7.8 |
| 2022-06-02 | CVE-2022-26867 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Dell Powerstoreos PowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. | 8.0 |
| 2022-06-02 | CVE-2022-26868 | OS Command Injection vulnerability in Dell Powerstoreos Dell EMC PowerStore versions 2.0.0.x, 2.0.1.x, and 2.1.0.x are vulnerable to a command injection flaw. | 7.8 |
| 2022-06-01 | CVE-2020-26184 | Improper Certificate Validation vulnerability in multiple products Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain an Improper Certificate Validation vulnerability. | 7.5 |
| 2022-06-01 | CVE-2020-26185 | Out-of-bounds Read vulnerability in multiple products Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability. | 7.5 |
| 2022-06-01 | CVE-2022-29098 | Weak Password Requirements vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.0.x through 9.3.0.x, contain a weak password requirement vulnerability. | 7.5 |
| 2022-05-26 | CVE-2022-26857 | Unspecified vulnerability in Dell Openmanage Enterprise 3.5/3.6.1 Dell OpenManage Enterprise Versions 3.8.3 and prior contain an improper authorization vulnerability. | 8.8 |
| 2022-04-21 | CVE-2022-24423 | Improper Input Validation vulnerability in Dell Integrated Dell Remote Access Controller 8 Firmware 2.82.82.82 Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. | 7.5 |
| 2022-04-21 | CVE-2022-24424 | Path Traversal vulnerability in Dell EMC Appsync 3.9.0.0/4.2.0.0/4.3.0.0 Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server. | 7.5 |
| 2022-04-21 | CVE-2022-26856 | Insufficiently Protected Credentials vulnerability in Dell EMC Repository Manager 3.4.0 Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. | 7.8 |