Dell

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-27689 1Dell 1Idrac Tools Jan 13, 2026 Jun 12, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privi...Show more Dell iDRAC Tools, version(s) prior to 11.3.0.0, contain(s) an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.Show less
CVE-2025-36573 1Dell 2Pro Smart Dock Sd25 Firmware Pro Thunderbolt 4 Smart Dock Sd25tb4 Firmware Jan 13, 2026 Jun 12, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive Information into Log File vulnerability. A user with local access could potentially exploit this vulnerability, leading to Inform...Show more Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive Information into Log File vulnerability. A user with local access could potentially exploit this vulnerability, leading to Information disclosure.Show less
CVE-2025-36580 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 4.8 MEDIUM· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could po...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injectionShow less
CVE-2025-36578 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Incorrect Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Incorrect Authorization vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.Show less
CVE-2025-36577 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could po...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Script injection.Show less
CVE-2025-36576 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 2.7 LOW· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain a Cross-Site Request Forgery (CSRF) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Ser...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain a Cross-Site Request Forgery (CSRF) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery.Show less
CVE-2025-36575 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulner...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Exposure of Sensitive Information Through Data Queries vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.Show less
CVE-2025-36574 1Dell 1Wyse Management Suite Jul 11, 2025 Jun 10, 2025 N/A· v4 8.2 HIGH· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Absolute Path Traversal vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information...Show more Dell Wyse Management Suite, versions prior to WMS 5.2, contain an Absolute Path Traversal vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and Unauthorized access.Show less
CVE-2025-36564 1Dell 1Encryption Jan 15, 2026 Jun 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell Encryption Admin Utilities versions prior to 11.10.2 contain an Improper Link Resolution vulnerability. A local malicious user could potentially exploit this vulnerability, leading to privilege escalation.
CVE-2025-32752 1Dell 1Thinos Jun 24, 2025 May 29, 2025 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Dell ThinOS 2502 and prior contain a Cleartext Storage of Sensitive Information vulnerability. A high privileged attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosu...Show more Dell ThinOS 2502 and prior contain a Cleartext Storage of Sensitive Information vulnerability. A high privileged attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure.Show less
CVE-2025-36572 1Dell 1Powerstoreos Jun 9, 2025 May 28, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Dell PowerStore, version(s) 4.0.0.0, contain(s) an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the hard-coded credentials,...Show more Dell PowerStore, version(s) 4.0.0.0, contain(s) an Use of Hard-coded Credentials vulnerability in the PowerStore image file. A low privileged attacker with remote access, with the knowledge of the hard-coded credentials, could potentially exploit this vulnerability to gain unauthorized access based on the hardcoded account's privileges.Show less
CVE-2025-30476 1Dell 1Insightiq Oct 30, 2025 May 15, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell PowerScale InsightIQ, version 5.2, contains an uncontrolled resource consumption vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of servi...Show more Dell PowerScale InsightIQ, version 5.2, contains an uncontrolled resource consumption vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.Show less
CVE-2025-30475 1Dell 1Insightiq Oct 30, 2025 May 15, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Dell PowerScale InsightIQ, versions 5.0 through 5.2, contains an improper privilege management vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to elevat...Show more Dell PowerScale InsightIQ, versions 5.0 through 5.2, contains an improper privilege management vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to elevation of privileges.Show less
CVE-2025-26481 1Dell 1Powerscale Onefs Jul 11, 2025 May 15, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell PowerScale OneFS, versions 9.4.0.0 through 9.9.0.0, contains an uncontrolled resource consumption vulnerability. A remote unprivileged attacker could potentially exploit this vulnerability, leading to denial of serv...Show more Dell PowerScale OneFS, versions 9.4.0.0 through 9.9.0.0, contains an uncontrolled resource consumption vulnerability. A remote unprivileged attacker could potentially exploit this vulnerability, leading to denial of service.Show less
CVE-2025-27695 1Dell 1Wyse Management Suite Jul 11, 2025 May 8, 2025 N/A· v4 4.9 MEDIUM· v3 N/A· v2 Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Inf...Show more Dell Wyse Management Suite, versions prior to WMS 5.1 contain an Authentication Bypass by Spoofing vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information Disclosure.Show less
CVE-2025-30102 1Dell 1Powerscale Onefs May 16, 2025 May 8, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to denial of service.
CVE-2025-30101 1Dell 1Powerscale Onefs May 16, 2025 May 8, 2025 N/A· v4 6.3 MEDIUM· v3 N/A· v2 Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerabil...Show more Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to denial of service and information tampering.Show less
CVE-2025-22476 1Dell 1Storage Manager Nov 4, 2025 May 6, 2025 N/A· v4 8.0 HIGH· v3 N/A· v2 Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with adjacent net...Show more Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to Remote execution.Show less
CVE-2025-23379 1Dell 1Storage Manager May 13, 2025 May 6, 2025 N/A· v4 5.2 MEDIUM· v3 N/A· v2 Dell Storage Center - Dell Storage Manager, version(s) 21.0.20, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with adjacent...Show more Dell Storage Center - Dell Storage Manager, version(s) 21.0.20, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Script injection.Show less
CVE-2025-22479 1Dell 1Storage Manager May 13, 2025 May 6, 2025 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. An unauthenticated attacker with adjacent networ...Show more Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Script injection.Show less

Previous 1...121314...76 Next