Dell

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-32491 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell Client BIOS contains a Buffer Overflow vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by manipulating an SMI to cause an arbitrary write during SMM.
CVE-2022-32489 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-32488 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-32487 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-32485 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-32484 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2022-32483 1Dell 290Alienware Area 51m R1 Firmware Alienware Area 51m R2 FirmwareAlienware Aurora R10 Firmware+287 more Nov 21, 2024 Oct 12, 2022 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with admin privileges may potentially exploit this vulnerability in order to modify a UEFI variable.
CVE-2022-31228 1Dell 1Xtremio Management Server Nov 21, 2024 Oct 12, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Dell EMC XtremIO versions prior to X2 6.4.0-22 contain a bruteforce vulnerability. A remote unauthenticated attacker can potentially exploit this vulnerability and gain access to an admin account.
CVE-2022-34434 1Dell 1Cloud Mobility For Dell Emc Storage Nov 21, 2024 Oct 11, 2022 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Cloud Mobility for Dell Storage versions 1.3.0 and earlier contains an Improper Access Control vulnerability within the Postgres database. A threat actor with root level access to either the vApp or containerized version...Show more Cloud Mobility for Dell Storage versions 1.3.0 and earlier contains an Improper Access Control vulnerability within the Postgres database. A threat actor with root level access to either the vApp or containerized versions of Cloud Mobility may potentially exploit this vulnerability, leading to the modification or deletion of tables that are required for many of the core functionalities of Cloud Mobility. Exploitation may lead to the compromise of integrity and availability of the normal functionality of the Cloud Mobility application.Show less
CVE-2022-34432 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 8.2 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders.
CVE-2022-34431 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a guest user profile corruption vulnerability. A WMS privilege attacker could potentially exploit this vulnerability, leading to DHC system not being accessible.
CVE-2022-34430 1Dell 1Hybrid Client Nov 21, 2024 Oct 11, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a Zip Bomb Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.
CVE-2022-34427 1Dell 1Container Storage Modules Nov 21, 2024 Oct 11, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Dell Container Storage Modules 1.2 contains an OS Command Injection in goiscsi and gobrick libraries. A remote unauthenticated attacker could exploit this vulnerability leading to modification of intended OS command exec...Show more Dell Container Storage Modules 1.2 contains an OS Command Injection in goiscsi and gobrick libraries. A remote unauthenticated attacker could exploit this vulnerability leading to modification of intended OS command execution.Show less
CVE-2022-34426 1Dell 1Container Storage Modules Nov 21, 2024 Oct 11, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Dell Container Storage Modules 1.2 contains an Improper Limitation of a Pathname to a Restricted Directory in goiscsi and gobrick libraries which could lead to OS command injection. A remote unauthenticated attacker coul...Show more Dell Container Storage Modules 1.2 contains an Improper Limitation of a Pathname to a Restricted Directory in goiscsi and gobrick libraries which could lead to OS command injection. A remote unauthenticated attacker could exploit this vulnerability leading to unintentional access to path outside of restricted directory.Show less
CVE-2022-32492 1Dell 1Bios Nov 21, 2024 Oct 11, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-32486 1Dell 1Bios Nov 21, 2024 Oct 11, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.
CVE-2022-34425 1Dell 1Enterprise Sonic Distribution Nov 21, 2024 Oct 10, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 Dell Enterprise SONiC OS, 4.0.0, 4.0.1, contain a cryptographic key vulnerability in SSH. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to unauthorized access to communication.
CVE-2022-34402 1Dell 1Wyse Thinos Nov 21, 2024 Oct 10, 2022 N/A· v4 4.9 MEDIUM· v3 N/A· v2 Dell Wyse ThinOS 2205 contains a Regular Expression Denial of Service Vulnerability in UI. An admin privilege attacker could potentially exploit this vulnerability, leading to denial-of-service.
CVE-2022-34429 1Dell 1Hybrid Client Nov 21, 2024 Sep 30, 2022 N/A· v4 7.1 HIGH· v3 N/A· v2 Dell Hybrid Client below 1.8 version contains a Zip Slip Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.
CVE-2022-34428 1Dell 1Hybrid Client Nov 21, 2024 Sep 30, 2022 N/A· v4 2.7 LOW· v3 N/A· v2 Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary...Show more Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary denial-of-service.Show less

Previous 1...444546...76 Next