Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-26866 | Cross-site Scripting vulnerability in Dell Powerstoreos Dell PowerStore Versions before v2.1.1.0. | 5.5 |
| 2022-06-02 | CVE-2022-29085 | Insufficiently Protected Credentials vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. | 6.7 |
| 2022-05-26 | CVE-2022-24414 | Information Exposure vulnerability in Dell Cloudlink Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. | 6.5 |
| 2022-05-26 | CVE-2022-24417 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-05-26 | CVE-2022-24418 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-05-26 | CVE-2022-26865 | Improper Authentication vulnerability in Dell Supportassist OS Recovery 5.5.1 Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. | 6.8 |
| 2022-05-26 | CVE-2022-29082 | Improper Certificate Validation vulnerability in Dell EMC Networker Dell EMC NetWorker versions 19.1.x, 19.1.0.x, 19.1.1.x, 19.2.x, 19.2.0.x, 19.2.1.x 19.3.x, 19.3.0.x, 19.4.x, 19.4.0.x, 19.5.x,19.5.0.x, 19.6 and 19.6.0.1 and 19.6.0.2 contain an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port 5671 which could allow remote attackers to spoof certificates. | 4.6 |
| 2022-05-26 | CVE-2022-29091 | Cross-site Scripting vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173 contain a Reflected Cross-Site Scripting Vulnerability in Unisphere GUI. | 6.1 |
| 2022-04-21 | CVE-2022-22558 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dell products Dell PowerEdge Server BIOS and Dell Precision Workstation 7910 and 7920 Rack BIOS contain an Improper SMM communication buffer verification vulnerability. | 6.0 |
| 2022-04-12 | CVE-2022-22550 | Insufficiently Protected Credentials vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.2 and above, contain a password disclosure vulnerability. | 6.7 |