Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-01 | CVE-2022-34458 | Unspecified vulnerability in Dell Alienware Update, Command Update and Update Dell Command | Update, Dell Update, and Alienware Update versions prior to 4.7 contain a Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in download operation component. | 5.5 |
| 2023-02-01 | CVE-2022-45095 | Command Injection vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, 8.2.x-9.4.x, contain a command injection vulnerability. | 6.7 |
| 2023-02-01 | CVE-2022-45096 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, 8.2.0 through 9.3.0, contain an User Interface Security Issue. | 6.5 |
| 2023-01-18 | CVE-2022-45103 | Information Exposure vulnerability in Dell products Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 9.2.3.x contain an information disclosure vulnerability. | 6.5 |
| 2023-01-18 | CVE-2022-34435 | Improper Input Validation vulnerability in Dell Idrac9 Firmware Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. | 4.9 |
| 2023-01-18 | CVE-2022-34436 | Improper Input Validation vulnerability in Dell Idrac8 Firmware Dell iDRAC8 version 2.83.83.83 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. | 4.9 |
| 2022-10-21 | CVE-2020-5355 | Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission Control Protocol (TCP) and stream forwarding. | 4.3 |
| 2022-10-21 | CVE-2022-31239 | Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. | 4.4 |
| 2022-10-21 | CVE-2022-34437 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. | 6.7 |
| 2022-10-21 | CVE-2022-34438 | Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. | 6.7 |