Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-06 | CVE-2024-47475 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS 8.2.2.x through 9.8.0.x contains an incorrect permission assignment for critical resource vulnerability. | 5.5 |
| 2024-12-26 | CVE-2024-51540 | Integer Overflow or Wraparound vulnerability in Dell Elastic Cloud Storage 3.0/3.8.0.1/3.8.0.2 Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. | 6.5 |
| 2024-12-25 | CVE-2024-52534 | Authentication Bypass by Capture-replay vulnerability in Dell Elastic Cloud Storage 3.0/3.8.0.1/3.8.0.2 Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. | 5.4 |
| 2024-12-09 | CVE-2024-42426 | Unspecified vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS Versions 9.5.0.x through 9.8.0.x contain an uncontrolled resource consumption vulnerability. | 6.5 |
| 2024-12-09 | CVE-2024-49602 | Improper Locking vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS Versions 8.2.2.x through 9.8.0.x contain an improper resource unlocking vulnerability. | 6.5 |
| 2024-12-09 | CVE-2024-49603 | Unspecified vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS Versions 8.2.2.x through 9.9.0.x contain an incorrect specified argument vulnerability. | 6.5 |
| 2024-11-08 | CVE-2024-48011 | Unspecified vulnerability in Dell Data Domain Operating System Dell PowerProtect DD, versions prior to 7.7.5.50, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. | 6.5 |
| 2024-10-25 | CVE-2024-47481 | Unspecified vulnerability in Dell Data Lakehouse 1.0.0.0/1.1.0.0 Dell Data Lakehouse, version(s) 1.0.0.0, 1.1.0., contain(s) an Improper Access Control vulnerability. low complexity dell | 6.5 |
| 2024-10-25 | CVE-2024-47483 | SQL Injection vulnerability in Dell Data Lakehouse 1.0.0.0/1.1.0.0 Dell Data Lakehouse, version(s) 1.0.0.0 and 1.1.0.0, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. | 5.5 |
| 2024-10-18 | CVE-2024-47240 | Incorrect Default Permissions vulnerability in Dell Secure Connect Gateway 5.24.00.14 Dell Secure Connect Gateway (SCG) 5.24 contains an Incorrect Default Permissions vulnerability. | 6.3 |