Dell

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-21569 1Dell 1Emc Networker Nov 21, 2024 Sep 28, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized in...Show more Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information.Show less
CVE-2021-21522 1Dell 28Latitude 5285 2 In 1 Firmware Latitude 5289 2 In 1 FirmwareLatitude 5290 2 In 1 Firmware+25 more Nov 21, 2024 Sep 28, 2021 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password...Show more Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface.Show less
CVE-2021-36282 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to g...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to gain access up to 24 bytes of data within the /ifs kernel stack under certain conditions.Show less
CVE-2021-36281 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. A low privileged authenticated user can potentially exploit this vulnerability to escalate privileges.
CVE-2021-36280 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privile...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the cluster.Show less
CVE-2021-36279 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privile...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the cluster.Show less
CVE-2021-36278 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. A local malicious user with ISI_PRIV_LOGIN_SSH, ISI_PRIV_LOGIN_CONSOLE, or ISI_PRIV_SYS_...Show more Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. A local malicious user with ISI_PRIV_LOGIN_SSH, ISI_PRIV_LOGIN_CONSOLE, or ISI_PRIV_SYS_SUPPORT privileges may exploit this vulnerability to access sensitive information. If any third-party consumes those logs, the same sensitive information is available to those systems as well.Show less
CVE-2021-21599 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. This may allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to escalate privileges and escape the compliance g...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. This may allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to escalate privileges and escape the compliance guarantees. This only impacts Smartlock WORM compliance mode clusters as a critical vulnerability and Dell recommends to update/upgrade at the earliest opportunity.Show less
CVE-2021-21595 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. This vulnerability could allow the compadmin user to elevate privileges. This only impacts...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. This vulnerability could allow the compadmin user to elevate privileges. This only impacts Smartlock WORM compliance mode clusters as a critical vulnerability and Dell recommends to update/upgrade at the earliest opportunity.Show less
CVE-2021-21594 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. It can lead to potential disclosure of sensitive data. Dell recommends upgrading at your earl...Show more Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. It can lead to potential disclosure of sensitive data. Dell recommends upgrading at your earliest opportunity.Show less
CVE-2021-21592 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x improperly handle an exceptional condition. A remote low privileged user could potentially exploit this vulnerability, leading to unauthorized information disclosure.
CVE-2021-21568 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Aug 16, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an insufficient logging vulnerability. An authenticated user with ISI_PRIV_LOGIN_PAPI could make un-audited and un-trackable configuration changes to settings that...Show more Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an insufficient logging vulnerability. An authenticated user with ISI_PRIV_LOGIN_PAPI could make un-audited and un-trackable configuration changes to settings that their roles have privileges to change.Show less
CVE-2021-21601 1Dell 2Emc Data Protection Search Emc Integrated Data Protection Appliance Nov 21, 2024 Aug 10, 2021 N/A· v4 7.8 HIGH· v3 2.1 LOW· v2 Dell EMC Data Protection Search, 19.4 and prior, and IDPA, 2.6.1 and prior, contain an Information Exposure in Log File Vulnerability in CIS. A local low privileged attacker could potentially exploit this vulnerability,...Show more Dell EMC Data Protection Search, 19.4 and prior, and IDPA, 2.6.1 and prior, contain an Information Exposure in Log File Vulnerability in CIS. A local low privileged attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with the privileges of the compromised account.Show less
CVE-2021-21600 1Dell 1Emc Networker Nov 21, 2024 Aug 10, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Dell EMC NetWorker, 19.4 or older, contain an uncontrolled resource consumption flaw in its API service. An authorized API user could potentially exploit this vulnerability via the web and desktop user interfaces, leadin...Show more Dell EMC NetWorker, 19.4 or older, contain an uncontrolled resource consumption flaw in its API service. An authorized API user could potentially exploit this vulnerability via the web and desktop user interfaces, leading to denial of service in the manageability path.Show less
CVE-2021-21598 1Dell 1Wyse Thinos Nov 21, 2024 Aug 10, 2021 N/A· v4 3.9 LOW· v3 2.1 LOW· v2 Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerability to read sensitive...Show more Dell Wyse ThinOS, versions 9.0, 9.1, and 9.1 MR1, contain a Sensitive Information Disclosure Vulnerability. An authenticated attacker with physical access to the system could exploit this vulnerability to read sensitive Smartcard data in log files.Show less
CVE-2021-21597 1Dell 1Wyse Thinos Nov 21, 2024 Aug 10, 2021 N/A· v4 3.9 LOW· v3 2.1 LOW· v2 Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read sensitive information...Show more Dell Wyse ThinOS, version 9.0, contains a Sensitive Information Disclosure Vulnerability. An authenticated malicious user with physical access to the system could exploit this vulnerability to read sensitive information written to the log files.Show less
CVE-2021-21567 1Dell 1Powerscale Onefs Feb 20, 2026 Aug 10, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Dell PowerScale OneFS 9.1.0.x contains an improper privilege management vulnerability. It may allow an authenticated user with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE to elevate privilege.
CVE-2021-36277 1Dell 3Alienware Command Center Application Command \| UpdateUpdate/alienware Update Nov 21, 2024 Aug 9, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell Command \| Update, Dell Update, and Alienware Update versions before 4.3 contains an Improper Verification of Cryptographic Signature Vulnerability. A local authenticated malicious user may exploit this vulnerability...Show more Dell Command \| Update, Dell Update, and Alienware Update versions before 4.3 contains an Improper Verification of Cryptographic Signature Vulnerability. A local authenticated malicious user may exploit this vulnerability by executing arbitrary code on the system.Show less
CVE-2021-36276 1Dell 1Dbutildrv2.sys Firmware Nov 21, 2024 Aug 9, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Dell DBUtilDrv2.sys driver (versions 2.5 and 2.6) contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user a...Show more Dell DBUtilDrv2.sys driver (versions 2.5 and 2.6) contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.Show less
CVE-2021-21596 1Dell 2Openmanage Enterprise Openmanage Enterprise Modular Nov 21, 2024 Aug 9, 2021 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 Dell OpenManage Enterprise versions 3.4 through 3.6.1 and Dell OpenManage Enterprise Modular versions 1.20.00 through 1.30.00, contain a remote code execution vulnerability. A malicious attacker with access to the immedi...Show more Dell OpenManage Enterprise versions 3.4 through 3.6.1 and Dell OpenManage Enterprise Modular versions 1.20.00 through 1.30.00, contain a remote code execution vulnerability. A malicious attacker with access to the immediate subnet may potentially exploit this vulnerability leading to information disclosure and a possible elevation of privileges.Show less

Previous 1...555657...76 Next