Vulnerabilities > Dell > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-02 CVE-2024-32854 Unspecified vulnerability in Dell Powerscale Onefs
Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management vulnerability.
local
low complexity
dell
6.7
2024-06-26 CVE-2024-37138 Unspecified vulnerability in Dell Data Domain Operating System
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 on DDMC contain a relative path traversal vulnerability.
network
low complexity
dell
6.8
2024-06-26 CVE-2024-37139 Unspecified vulnerability in Dell Data Domain Operating System
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an Improper Control of a Resource Through its Lifetime vulnerability in an admin operation.
network
low complexity
dell
6.5
2024-06-26 CVE-2024-29174 Unspecified vulnerability in Dell Data Domain Operating System
Dell Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.30, LTS 7.10.1.20 contain an SQL Injection vulnerability.
local
low complexity
dell
4.4
2024-06-26 CVE-2024-29175 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Data Domain Operating System
Dell PowerProtect Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.40, LTS 7.10.1.30 contain an weak cryptographic algorithm vulnerability.
network
high complexity
dell CWE-327
5.9
2024-06-25 CVE-2024-0171 Unspecified vulnerability in Dell products
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability.
local
high complexity
dell
5.3
2024-06-13 CVE-2024-28965 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28966 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28967 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal maintenance REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28968 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for internal email and collection settings REST APIs (if enabled by Admin user from UI).
network
low complexity
dell
5.4