Vulnerabilities > Dell > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-08-16 CVE-2021-21594 Unspecified vulnerability in Dell EMC Powerscale Onefs 8.2.2/9.0.0.0/9.1.0
Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability.
network
low complexity
dell
5.3
5.3
2021-08-16 CVE-2021-21595 Command Injection vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command.
local
low complexity
dell CWE-77
6.7
6.7
2021-08-16 CVE-2021-21599 OS Command Injection vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability.
local
low complexity
dell CWE-78
6.7
6.7
2021-08-16 CVE-2021-36278 Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files.
local
low complexity
dell CWE-532
5.5
5.5
2021-08-16 CVE-2021-36280 Unspecified vulnerability in Dell EMC Powerscale Onefs
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability.
local
low complexity
dell
5.5
5.5
2021-08-10 CVE-2021-21600 Unspecified vulnerability in Dell EMC Networker
Dell EMC NetWorker, 19.4 or older, contain an uncontrolled resource consumption flaw in its API service.
network
low complexity
dell
6.5
6.5
2021-08-09 CVE-2021-21584 Information Exposure vulnerability in Dell products
Dell OpenManage Enterprise version 3.5 and OpenManage Enterprise-Modular version 1.30.00 contain an information disclosure vulnerability.
network
low complexity
dell CWE-200
6.5
6.5
2021-08-03 CVE-2021-21576 Cross-site Scripting vulnerability in Dell EMC Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.40.00 contain a DOM-based cross-site scripting vulnerability.
network
low complexity
dell CWE-79
6.1
6.1
2021-08-03 CVE-2021-21577 Cross-site Scripting vulnerability in Dell EMC Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.40.00 contain a DOM-based cross-site scripting vulnerability.
network
low complexity
dell CWE-79
6.1
6.1
2021-08-03 CVE-2021-21578 Open Redirect vulnerability in Dell EMC Idrac9 Firmware
Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability.
network
low complexity
dell CWE-601
6.1
6.1