Vulnerabilities > Dell > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-44279 | OS Command Injection vulnerability in Dell products Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI. | 6.7 |
| 2023-12-14 | CVE-2023-44284 | SQL Injection vulnerability in Dell products Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an SQL Injection vulnerability. | 4.3 |
| 2023-12-14 | CVE-2023-44286 | Cross-site Scripting vulnerability in Dell products Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability. | 6.1 |
| 2023-12-14 | CVE-2023-48661 | Files or Directories Accessible to External Parties vulnerability in Dell products Dell vApp Manager, versions prior to 9.2.4.x contain an arbitrary file read vulnerability. | 4.9 |
| 2023-12-14 | CVE-2023-48668 | OS Command Injection vulnerability in Dell Powerprotect Data Domain Management Center Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 on DDMC contain an OS command injection vulnerability in an admin operation. | 6.7 |
| 2023-12-05 | CVE-2023-44297 | Improper Locking vulnerability in Dell products Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. | 6.8 |
| 2023-12-05 | CVE-2023-44298 | Improper Locking vulnerability in Dell products Dell PowerEdge platforms 16G Intel E5 BIOS and Dell Precision BIOS, version 1.4.4, contain active debug code security vulnerability. | 6.8 |
| 2023-12-04 | CVE-2023-44300 | Insufficiently Protected Credentials vulnerability in Dell Powerprotect Data Manager Dm5500 Firmware Dell DM5500 5.14.0.0, contain a Plain-text Password Storage Vulnerability in the appliance. | 5.5 |
| 2023-12-04 | CVE-2023-44301 | Cross-site Scripting vulnerability in Dell Powerprotect Data Manager Dm5500 Firmware Dell DM5500 5.14.0.0 and prior contain a Reflected Cross-Site Scripting Vulnerability. | 5.4 |
| 2023-12-04 | CVE-2023-44306 | Path Traversal vulnerability in Dell Dm5500 Firmware Dell DM5500 contains a path traversal vulnerability in the appliance. | 6.5 |