Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-07 | CVE-2025-22402 | Unspecified vulnerability in Dell Update Manager Plugin Dell Update Manager Plugin, version(s) 1.5.0 through 1.6.0, contain(s) an Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability. | 5.4 |
| 2025-02-05 | CVE-2025-21117 | Operation on a Resource after Expiration or Release vulnerability in Dell Avamar Server Dell Avamar, version 19.4 or later, contains an access token reuse vulnerability in the AUI. | 5.5 |
| 2025-02-01 | CVE-2024-53296 | Out-of-bounds Write vulnerability in Dell Data Domain Operating System Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer Overflow vulnerability in the RestAPI. | 4.9 |
| 2025-01-30 | CVE-2025-23374 | Information Exposure Through Log Files vulnerability in Dell Enterprise Sonic Distribution Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3, contain(s) an Insertion of Sensitive Information into Log File vulnerability. | 4.9 |
| 2025-01-15 | CVE-2025-21101 | Race Condition vulnerability in Dell Display Manager Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local malicious user could potentially exploit this vulnerability during installation, leading to arbitrary folder or file deletion. | 6.3 |
| 2025-01-08 | CVE-2025-21111 | Insufficiently Protected Credentials vulnerability in Dell products Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password vulnerability. | 4.4 |
| 2025-01-08 | CVE-2025-21102 | Insufficiently Protected Credentials vulnerability in Dell products Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. | 4.4 |
| 2025-01-08 | CVE-2024-47239 | Unspecified vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. | 6.5 |
| 2025-01-06 | CVE-2024-47475 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.2.x through 9.8.0.x contains an incorrect permission assignment for critical resource vulnerability. | 5.5 |
| 2024-12-26 | CVE-2024-51540 | Integer Overflow or Wraparound vulnerability in Dell Elastic Cloud Storage Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. | 6.5 |