Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-13 | CVE-2018-15776 | Unspecified vulnerability in Dell Idrac7 Firmware and Idrac8 Firmware Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 contain an improper error handling vulnerability. low complexity dell | 6.8 |
| 2018-12-05 | CVE-2018-15773 | Information Exposure vulnerability in Dell Data Protection | Encryption Dell Encryption (formerly Dell Data Protection | Encryption) v10.1.0 and earlier contain an information disclosure vulnerability. | 4.3 |
| 2018-11-30 | CVE-2018-15768 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell Openmanage Network Manager Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database. | 6.5 |
| 2018-11-26 | CVE-2018-11077 | OS Command Injection vulnerability in multiple products 'getlogs' utility in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1 and 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 is affected by an OS command injection vulnerability. | 6.7 |
| 2018-11-26 | CVE-2018-11076 | Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0 and 7.4.1 and Dell EMC Integrated Data Protection Appliance (IDPA) 2.0 are affected by an information exposure vulnerability. | 6.5 |
| 2018-11-26 | CVE-2018-11067 | Open Redirect vulnerability in multiple products Dell EMC Avamar Client Manager in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1, 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 contain an open redirection vulnerability. | 6.1 |
| 2018-10-18 | CVE-2018-15765 | Information Exposure vulnerability in Dell EMC Secure Remote Services Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains an Information Exposure vulnerability. | 5.5 |
| 2018-09-28 | CVE-2018-1250 | Incorrect Authorization vulnerability in Dell EMC Unity Firmware and EMC Unityvsa Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains an Authorization Bypass vulnerability. | 6.5 |
| 2018-09-28 | CVE-2018-1246 | Cross-site Scripting vulnerability in Dell products Dell EMC Unity and UnityVSA contains reflected cross-site scripting vulnerability. | 6.1 |
| 2018-09-11 | CVE-2018-11070 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Bsafe Crypto-J and RSA Bsafe Ssl-J RSA BSAFE Crypto-J versions prior to 6.2.4 and RSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during PKCS #1 unpadding operations, also known as a Bleichenbacher attack. | 5.9 |