Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-01 | CVE-2024-53296 | Out-of-bounds Write vulnerability in Dell Data Domain Operating System Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer Overflow vulnerability in the RestAPI. | 4.9 |
| 2025-01-30 | CVE-2025-23374 | Information Exposure Through Log Files vulnerability in Dell Enterprise Sonic Distribution Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3, contain(s) an Insertion of Sensitive Information into Log File vulnerability. | 4.9 |
| 2025-01-15 | CVE-2025-21101 | Race Condition vulnerability in Dell Display Manager Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local malicious user could potentially exploit this vulnerability during installation, leading to arbitrary folder or file deletion. | 6.3 |
| 2025-01-08 | CVE-2025-21111 | Insufficiently Protected Credentials vulnerability in Dell products Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password vulnerability. | 4.4 |
| 2025-01-08 | CVE-2025-21102 | Insufficiently Protected Credentials vulnerability in Dell products Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. | 4.4 |
| 2025-01-08 | CVE-2024-47239 | Unspecified vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. | 6.5 |
| 2025-01-06 | CVE-2024-47475 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.2.x through 9.8.0.x contains an incorrect permission assignment for critical resource vulnerability. | 5.5 |
| 2024-12-26 | CVE-2024-51540 | Integer Overflow or Wraparound vulnerability in Dell Elastic Cloud Storage Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. | 6.5 |
| 2024-12-25 | CVE-2024-52534 | Authentication Bypass by Capture-replay vulnerability in Dell Elastic Cloud Storage Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. | 5.4 |
| 2024-12-25 | CVE-2024-52543 | Exposure of Resource to Wrong Sphere vulnerability in Dell Nativeedge Orchestrator Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure Permissions vulnerability. | 4.4 |