Vulnerabilities > Dell > Smartfabric Storage Software
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-05 | CVE-2023-32485 | Improper Input Validation vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. | 9.8 |
2023-10-05 | CVE-2023-43068 | OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. | 8.8 |
2023-10-05 | CVE-2023-43069 | OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. | 7.8 |
2023-10-05 | CVE-2023-43070 | Path Traversal vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. | 6.5 |
2023-10-05 | CVE-2023-43071 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages in the GUI. | 5.4 |
2023-10-05 | CVE-2023-43072 | Improper Access Control vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI. | 7.8 |
2023-10-05 | CVE-2023-43073 | Improper Input Validation vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. | 6.5 |
2023-10-05 | CVE-2023-4401 | OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0 Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the ‘more’ command. | 8.8 |