Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-26 | CVE-2024-37138 | Unspecified vulnerability in Dell Data Domain Operating System Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 on DDMC contain a relative path traversal vulnerability. | 6.8 |
| 2024-06-26 | CVE-2024-37139 | Unspecified vulnerability in Dell Data Domain Operating System Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an Improper Control of a Resource Through its Lifetime vulnerability in an admin operation. | 6.5 |
| 2024-06-26 | CVE-2024-28973 | Unspecified vulnerability in Dell Data Domain Operating System Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Stored Cross-Site Scripting Vulnerability. | 4.8 |
| 2024-06-26 | CVE-2024-29173 | Unspecified vulnerability in Dell Data Domain Operating System Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Server-Side Request Forgery (SSRF) vulnerability. | 4.9 |
| 2024-06-26 | CVE-2024-29174 | Unspecified vulnerability in Dell Data Domain Operating System Dell Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.30, LTS 7.10.1.20 contain an SQL Injection vulnerability. | 4.4 |
| 2024-06-26 | CVE-2024-29175 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell Data Domain Operating System Dell PowerProtect Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.40, LTS 7.10.1.30 contain an weak cryptographic algorithm vulnerability. | 5.9 |
| 2024-06-25 | CVE-2024-0171 | Unspecified vulnerability in Dell products Dell PowerEdge Server BIOS contains an TOCTOU race condition vulnerability. | 5.3 |
| 2024-06-25 | CVE-2024-32855 | Unspecified vulnerability in Dell products Dell Client Platform BIOS contains an Out-of-bounds Write vulnerability in an externally developed component. | 4.4 |
| 2024-06-13 | CVE-2024-28965 | Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18 Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal enable REST API (if enabled by Admin user from UI). | 5.4 |
| 2024-06-13 | CVE-2024-28966 | Unspecified vulnerability in Dell Secure Connect Gateway 5.18.00.20/5.22.00.18 Dell SCG, versions prior to 5.24.00.00, contain an Improper Access Control vulnerability in the SCG exposed for an internal update REST API (if enabled by Admin user from UI). | 5.4 |