Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-25 | CVE-2021-36346 | Unspecified vulnerability in Dell Integrated Dell Remote Access Controller 8 Firmware Dell iDRAC 8 prior to version 2.82.82.82 contain a denial of service vulnerability. | 5.3 |
| 2022-01-24 | CVE-2021-36342 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-01-24 | CVE-2021-36343 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-01-24 | CVE-2021-36349 | Server-Side Request Forgery (SSRF) vulnerability in Dell EMC Data Protection Central Dell EMC Data Protection Central versions 19.5 and prior contain a Server Side Request Forgery vulnerability in the DPC DNS client processing. | 4.3 |
| 2022-01-24 | CVE-2021-43589 | OS Command Injection vulnerability in Dell products Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. | 6.7 |
| 2022-01-24 | CVE-2022-22554 | Insufficiently Protected Credentials vulnerability in Dell EMC System Update Dell EMC System Update, version 1.9.2 and prior, contain an Unprotected Storage of Credentials vulnerability. | 5.5 |
| 2022-01-21 | CVE-2022-22552 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Dell EMC Appsync 3.9.0.0/4.2.0.0/4.3.0.0 Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync. | 6.1 |
| 2021-12-21 | CVE-2021-36317 | Insufficiently Protected Credentials vulnerability in Dell products Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. | 6.7 |
| 2021-12-21 | CVE-2021-36318 | Insufficiently Protected Credentials vulnerability in Dell EMC Avamar Server Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage vulnerability. | 6.7 |
| 2021-12-21 | CVE-2021-36341 | Information Exposure vulnerability in Dell Wyse Device Agent 14.5.4.1 Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability. | 5.5 |