Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-01 | CVE-2022-23158 | Information Exposure vulnerability in Dell Wyse Device Agent 14.5.4.1 Wyse Device Agent version 14.6.1.4 and below contain a sensitive data exposure vulnerability. | 4.4 |
| 2022-03-04 | CVE-2021-43590 | Cleartext Storage of Sensitive Information vulnerability in Dell Enterprise Storage Analytics 4.0.1/6.2.1 Dell EMC Enterprise Storage Analytics for vRealize Operations, versions 4.0.1 to 6.2.1, contain a Plain-text password storage vulnerability. | 6.0 |
| 2022-02-09 | CVE-2022-22567 | Insufficient Verification of Data Authenticity vulnerability in Dell products Select Dell Client Commercial and Consumer platforms are vulnerable to an insufficient verification of data authenticity vulnerability. | 5.1 |
| 2022-01-25 | CVE-2021-36346 | Unspecified vulnerability in Dell Integrated Dell Remote Access Controller 8 Firmware Dell iDRAC 8 prior to version 2.82.82.82 contain a denial of service vulnerability. | 5.3 |
| 2022-01-24 | CVE-2021-36342 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-01-24 | CVE-2021-36343 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-01-24 | CVE-2021-36349 | Server-Side Request Forgery (SSRF) vulnerability in Dell EMC Data Protection Central Dell EMC Data Protection Central versions 19.5 and prior contain a Server Side Request Forgery vulnerability in the DPC DNS client processing. | 4.3 |
| 2022-01-24 | CVE-2021-43589 | OS Command Injection vulnerability in Dell products Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. | 6.7 |
| 2022-01-24 | CVE-2022-22554 | Insufficiently Protected Credentials vulnerability in Dell EMC System Update Dell EMC System Update, version 1.9.2 and prior, contain an Unprotected Storage of Credentials vulnerability. | 5.5 |
| 2022-01-21 | CVE-2022-22552 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Dell EMC Appsync 3.9.0.0/4.2.0.0/4.3.0.0 Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync. | 6.1 |