Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-23 | CVE-2023-43067 | XXE vulnerability in Dell products Dell Unity prior to 5.3 contains an XML External Entity injection vulnerability. | 6.5 |
| 2023-10-23 | CVE-2023-43065 | Cross-site Scripting vulnerability in Dell products Dell Unity prior to 5.3 contains a Cross-site scripting vulnerability. | 5.4 |
| 2023-10-05 | CVE-2023-43070 | Path Traversal vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. | 6.5 |
| 2023-10-05 | CVE-2023-43071 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages in the GUI. | 5.4 |
| 2023-10-05 | CVE-2023-43073 | Improper Input Validation vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. | 6.5 |
| 2023-09-21 | CVE-2023-39252 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Secure Connect Gateway Policy Manager 5.16.00.14 Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. | 5.9 |
| 2023-09-15 | CVE-2023-32461 | Heap-based Buffer Overflow vulnerability in Dell products Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. | 6.7 |
| 2023-09-08 | CVE-2023-32470 | Unspecified vulnerability in Dell Digital Delivery Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. | 5.5 |
| 2023-08-16 | CVE-2023-28075 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell products Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. | 6.3 |
| 2023-08-16 | CVE-2023-39250 | Information Exposure Through Source Code vulnerability in Dell products Dell Storage Integration Tools for VMware (DSITV) and Dell Storage vSphere Client Plugin (DSVCP) versions prior to 6.1.1 and Replay Manager for VMware (RMSV) versions prior to 3.1.2 contain an information disclosure vulnerability. | 5.5 |