Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-10 | CVE-2022-33931 | Unspecified vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite 3.6.1 and below contains an Improper Access control vulnerability in UI. | 5.3 |
| 2022-08-10 | CVE-2022-34365 | Path Traversal vulnerability in Dell Wyse Management Suite WMS 3.7 contains a Path Traversal Vulnerability in Device API. | 6.5 |
| 2022-08-09 | CVE-2022-29083 | Improper Authentication vulnerability in Dell products Prior Dell BIOS versions contain an Improper Authentication vulnerability. | 6.8 |
| 2022-07-21 | CVE-2022-22555 | OS Command Injection vulnerability in Dell products Dell EMC PowerStore, contains an OS command injection Vulnerability. | 6.7 |
| 2022-06-28 | CVE-2022-31229 | Information Exposure Through an Error Message vulnerability in Dell Powerscale Onefs Dell PowerScale OneFS, 8.2.x through 9.3.0.x, contain an error message with sensitive information. | 4.9 |
| 2022-06-24 | CVE-2022-29096 | Cross-site Scripting vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite 3.6.1 and below contains a Reflected Cross-Site Scripting Vulnerability in saveGroupConfigurations page. | 5.4 |
| 2022-06-24 | CVE-2022-29097 | Path Traversal vulnerability in Dell Wyse Management Suite Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. | 4.9 |
| 2022-06-02 | CVE-2022-26866 | Cross-site Scripting vulnerability in Dell Powerstoreos Dell PowerStore Versions before v2.1.1.0. | 5.5 |
| 2022-06-02 | CVE-2022-29085 | Insufficiently Protected Credentials vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. | 6.7 |
| 2022-05-26 | CVE-2022-24414 | Information Exposure vulnerability in Dell Cloudlink Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. | 6.5 |