Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-24 | CVE-2022-29096 | Cross-site Scripting vulnerability in Dell Wyse Management Suite Dell Wyse Management Suite 3.6.1 and below contains a Reflected Cross-Site Scripting Vulnerability in saveGroupConfigurations page. | 5.4 |
| 2022-06-24 | CVE-2022-29097 | Path Traversal vulnerability in Dell Wyse Management Suite Dell WMS 3.6.1 and below contains a Path Traversal vulnerability in Device API. | 4.9 |
| 2022-06-02 | CVE-2022-26866 | Cross-site Scripting vulnerability in Dell Powerstoreos Dell PowerStore Versions before v2.1.1.0. | 5.5 |
| 2022-06-02 | CVE-2022-29085 | Insufficiently Protected Credentials vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell Unity XT versions prior to 5.2.0.0.5.173 contain a plain-text password storage vulnerability when certain off-array tools are run on the system. | 6.7 |
| 2022-05-26 | CVE-2022-24414 | Information Exposure vulnerability in Dell Cloudlink Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. | 6.5 |
| 2022-05-26 | CVE-2022-24417 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-05-26 | CVE-2022-24418 | Improper Input Validation vulnerability in Dell products Dell BIOS contains an improper input validation vulnerability. | 6.7 |
| 2022-05-26 | CVE-2022-26865 | Improper Authentication vulnerability in Dell Supportassist OS Recovery 5.5.1 Dell Support Assist OS Recovery versions before 5.5.2 contain an Authentication Bypass vulnerability. | 6.8 |
| 2022-05-26 | CVE-2022-29082 | Improper Certificate Validation vulnerability in Dell EMC Networker Dell EMC NetWorker versions 19.1.x, 19.1.0.x, 19.1.1.x, 19.2.x, 19.2.0.x, 19.2.1.x 19.3.x, 19.3.0.x, 19.4.x, 19.4.0.x, 19.5.x,19.5.0.x, 19.6 and 19.6.0.1 and 19.6.0.2 contain an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port 5671 which could allow remote attackers to spoof certificates. | 4.6 |
| 2022-05-26 | CVE-2022-29091 | Cross-site Scripting vulnerability in Dell products Dell Unity, Dell UnityVSA, and Dell UnityXT versions prior to 5.2.0.0.5.173 contain a Reflected Cross-Site Scripting Vulnerability in Unisphere GUI. | 6.1 |