Vulnerabilities > Dell > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-19 CVE-2020-29503 Incorrect Default Permissions vulnerability in Dell EMC Powerstore
Dell EMC PowerStore versions prior to 1.0.3.0.5.xxx contain a file permission Vulnerability.
local
low complexity
dell CWE-276
4.4
2021-07-15 CVE-2021-21586 Path Traversal vulnerability in Dell Wyse Management Suite
Wyse Management Suite versions 3.2 and earlier contain an absolute path traversal vulnerability.
network
low complexity
dell CWE-22
6.5
2021-07-12 CVE-2021-21588 Insufficient Verification of Data Authenticity vulnerability in Dell Powerflex Presentation Server 3.5
Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI.
network
low complexity
dell CWE-345
4.3
2021-07-12 CVE-2021-21589 Unspecified vulnerability in Dell products
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 do not exit on failed Initialization.
local
low complexity
dell
6.7
2021-07-12 CVE-2021-21590 Insufficiently Protected Credentials vulnerability in Dell products
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability.
local
low complexity
dell CWE-522
6.7
2021-07-12 CVE-2021-21591 Insufficiently Protected Credentials vulnerability in Dell products
Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.1.0.0.5.394 contain a plain-text password storage vulnerability.
local
low complexity
dell CWE-522
6.7
2021-06-24 CVE-2021-21571 Improper Certificate Validation vulnerability in Dell products
Dell UEFI BIOS https stack leveraged by the Dell BIOSConnect feature and Dell HTTPS Boot feature contains an improper certificate validation vulnerability.
network
high complexity
dell CWE-295
6.5
2021-06-14 CVE-2021-21554 Out-of-bounds Write vulnerability in Dell products
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed.
local
low complexity
dell CWE-787
6.7
2021-06-14 CVE-2021-21555 Out-of-bounds Write vulnerability in Dell products
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed.
local
low complexity
dell CWE-787
6.7
2021-06-14 CVE-2021-21556 Out-of-bounds Write vulnerability in Dell products
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed.
local
low complexity
dell CWE-787
6.7