Vulnerabilities > Dell > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-06-26 CVE-2024-29175 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Data Domain Operating System
Dell PowerProtect Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.40, LTS 7.10.1.30 contain an weak cryptographic algorithm vulnerability.
network
high complexity
dell CWE-327
5.9
2024-06-25 CVE-2024-0171 Unspecified vulnerability in Dell products
Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability.
local
high complexity
dell
5.3
2024-06-13 CVE-2024-28965 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28966 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28967 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal maintenance REST API (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28968 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for internal email and collection settings REST APIs (if enabled by Admin user from UI).
network
low complexity
dell
5.4
2024-06-13 CVE-2024-28969 Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18
Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI).
network
low complexity
dell
4.3
2024-06-13 CVE-2024-32856 Unspecified vulnerability in Dell products
Dell Client Platform BIOS contains an Improper Input Validation vulnerability in an externally developed component.
local
low complexity
dell
6.0
2024-06-12 CVE-2024-0160 Unspecified vulnerability in Dell products
Dell Client Platform contains an incorrect authorization vulnerability.
low complexity
dell
6.8
2024-06-12 CVE-2024-28970 Unspecified vulnerability in Dell products
Dell Client BIOS contains an Out-of-bounds Write vulnerability.
local
low complexity
dell
4.4