Hybrid Client

hybrid_client

Vendor: Dell • 10 CVEs

CVEs (10)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-32476 1Dell 1Hybrid Client Nov 21, 2024 Jul 20, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Dell Hybrid Client version 2.0 contains a Sensitive Data Exposure vulnerability. An unauthenticated malicious user on the device can access hard coded secrets in javascript files.
CVE-2022-34432 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 8.2 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders.
CVE-2022-34431 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a guest user profile corruption vulnerability. A WMS privilege attacker could potentially exploit this vulnerability, leading to DHC system not being accessible.
CVE-2022-34430 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a Zip Bomb Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.
CVE-2022-34429 1Dell 1Hybrid Client Nov 21, 2024 Sep 30, 2022 N/A· v4 7.1 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a Zip Slip Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.
CVE-2022-34428 1Dell 1Hybrid Client Nov 21, 2024 Sep 30, 2022 N/A· v4 2.7 LOW· v3 N/A· v2 Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary...Show more Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary denial-of-service.Show less
CVE-2021-21537 1Dell 1Hybrid Client Nov 21, 2024 Apr 30, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to view and exfiltrate sensitive information on the system.
CVE-2021-21536 1Dell 1Hybrid Client Nov 21, 2024 Apr 30, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to register the client to a server in order to view sensiti...Show more Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to register the client to a server in order to view sensitive information.Show less
CVE-2021-21535 1Dell 1Hybrid Client Nov 21, 2024 Apr 30, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain root level access to the s...Show more Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain root level access to the system.Show less
CVE-2021-21534 1Dell 1Hybrid Client Nov 21, 2024 Apr 30, 2021 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain access to sensitive information via the local API.