VYPR

Vendor CVEs

Dell

All CVEs

1,538 total · sorted by risk
  • CVE-2023-28055Sep 26, 2023
    risk 0.00cvss epss 0.00

    Dell NetWorker, Version 19.7 has an improper authorization vulnerability in the NetWorker client. An unauthenticated attacker within the same network could potentially exploit this by manipulating a command leading to gain of complete access to the server file further resulting…

  • CVE-2023-39252Sep 21, 2023
    risk 0.00cvss epss 0.00

    Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information.

  • CVE-2023-32461Sep 15, 2023
    risk 0.00cvss epss 0.00

    Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially escalate privileges.  

  • CVE-2023-3039Sep 12, 2023
    risk 0.00cvss epss 0.00

    SD ROM Utility, versions prior to 1.0.2.0 contain an Improper Access Control vulnerability. A low-privileged malicious user may potentially exploit this vulnerability to perform arbitrary code execution with limited access.

  • CVE-2023-32470Sep 8, 2023
    risk 0.00cvss epss 0.00

    Dell Digital Delivery versions prior to 5.0.82.0 contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to permanent Denial of Service (DOS).

  • CVE-2023-28072Sep 4, 2023
    risk 0.00cvss epss 0.00

    Dell Alienware Command Center, versions prior to 5.5.51.0, contain a deserialization of untrusted data vulnerability. A local malicious user could potentially send specially crafted requests to the .NET Remoting server to run arbitrary code on the system.

  • CVE-2023-32457Aug 29, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management vulnerability. A remote attacker with low privileges could potentially exploit this vulnerability, leading to escalation of privileges.

  • CVE-2023-32453Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper authentication vulnerability. A malicious user with physical access to the system may potentially exploit this vulnerability in order to modify a security-critical UEFI variable without knowledge of the BIOS administrator.

  • CVE-2023-28075Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contain a Time-of-check Time-of-use vulnerability in BIOS. A local authenticated malicious user with physical access to the system could potentially exploit this vulnerability by using a specifically timed DMA transaction during an SMI in order to gain arbitrary code…

  • CVE-2023-39250Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell Storage Integration Tools for VMware (DSITV) and Dell Storage vSphere Client Plugin (DSVCP) versions prior to 6.1.1 and Replay Manager for VMware (RMSV) versions prior to 3.1.2 contain an information disclosure vulnerability. A local low-privileged malicious user could…

  • CVE-2023-32493Aug 16, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS, 9.5.0.x, contains a protection mechanism bypass vulnerability. An unprivileged, remote attacker could potentially exploit this vulnerability, leading to denial of service, information disclosure and remote execution.

  • CVE-2023-32492Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.5.0.x contains an incorrect default permissions vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to information disclosure or allowing to modify files.

  • CVE-2023-32491Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.5.0.x, contains an insertion of sensitive information into log file vulnerability in SNMPv3. A low privileges user could potentially exploit this vulnerability, leading to information disclosure.

  • CVE-2023-32490Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 8.2x -9.5x contains an improper privilege management vulnerability. A high privilege local attacker could potentially exploit this vulnerability, leading to system takeover.

  • CVE-2023-32489Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulnerability. A local attacker with high privileges could potentially exploit this vulnerability, to bypass mode protections and gain elevated privileges.  

  • CVE-2023-32488Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.2.x-9.5.0.x, contains an information disclosure vulnerability in NFS. A low privileged attacker could potentially exploit this vulnerability, leading to information disclosure.

  • CVE-2023-32487Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privilege vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service, code execution and information disclosure.

  • CVE-2023-32486Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low privilege local attacker could potentially exploit this vulnerability, leading to escalation of privileges.

  • CVE-2023-32495Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.2.x-9.5.x, contains a exposure of sensitive information to an unauthorized Actor vulnerability. An authorized local attacker could potentially exploit this vulnerability, leading to escalation of privileges.

  • CVE-2023-32494Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of insufficient privileges vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to elevation of privilege and affect in compliance mode also.

  • CVE-2022-34453Aug 3, 2023
    risk 0.00cvss epss 0.00

    Dell XtremIO X2 XMS versions prior to 6-4-1.11 contain an improper access control vulnerability. A remote read only user could potentially exploit this vulnerability to perform add/delete QoS policies which are disabled by default.

  • CVE-2023-32468Jul 26, 2023
    risk 0.00cvss epss 0.00

    Dell ECS Streamer, versions prior to 2.0.7.1, contain an insertion of sensitive information in log files vulnerability. A remote malicious high-privileged user could potentially exploit this vulnerability leading to exposure of this sensitive data.

  • CVE-2023-32478Jul 21, 2023
    risk 0.00cvss epss 0.00

    Dell PowerStore versions prior to 3.5.0.1 contain an insertion of sensitive information into log file vulnerability. A high privileged malicious user could potentially exploit this vulnerability, leading to sensitive information disclosure.

  • CVE-2023-32476Jul 20, 2023
    risk 0.00cvss epss 0.00

    Dell Hybrid Client version 2.0 contains a Sensitive Data Exposure vulnerability. An unauthenticated malicious user on the device can access hard coded secrets in javascript files.

  • CVE-2023-32447Jul 20, 2023
    risk 0.00cvss epss 0.00

    Dell Wyse ThinOS versions prior to 2306 (9.4.2103) contain a sensitive information disclosure vulnerability. A malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.

  • CVE-2023-32446Jul 20, 2023
    risk 0.00cvss epss 0.00

    Dell Wyse ThinOS versions prior to 2303 (9.4.1141) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.

  • CVE-2023-32455Jul 20, 2023
    risk 0.00cvss epss 0.00

    Dell Wyse ThinOS versions prior to 2208 (9.3.2102) contain a sensitive information disclosure vulnerability. An unauthenticated malicious user with local access to the device could exploit this vulnerability to read sensitive information written to the log files.

  • CVE-2023-32483Jul 20, 2023
    risk 0.00cvss epss 0.00

    Wyse Management Suite versions prior to 4.0 contain a sensitive information disclosure vulnerability. An authenticated malicious user having local access to the system running the application could exploit this vulnerability to read sensitive information written to log files.

  • CVE-2023-32482Jul 20, 2023
    risk 0.00cvss epss 0.00

    Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group.

  • CVE-2023-32481Jul 20, 2023
    risk 0.00cvss epss 0.01

    Wyse Management Suite versions prior to 4.0 contain a denial-of-service vulnerability. An authenticated malicious user can flood the configured SMTP server with numerous requests in order to deny access to the system.

  • CVE-2023-28065Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell Command | Update, Dell Update, and Alienware Update versions 4.8.0 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability leading to privilege escalation.

  • CVE-2023-28064Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an Out-of-bounds Write vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability, leading to denial of service.

  • CVE-2023-32480Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an Improper Input Validation vulnerability. An unauthenticated physical attacker may potentially exploit this vulnerability to perform arbitrary code execution.

  • CVE-2023-28073Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper authentication vulnerability. A locally authenticated malicious user may potentially exploit this vulnerability by bypassing certain authentication mechanisms in order to elevate privileges on the system.

  • CVE-2023-28071Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell Command | Update, Dell Update, and Alienware Update versions 4.9.0, A01 and prior contain an Insecure Operation on Windows Junction / Mount Point vulnerability. A local malicious user could potentially exploit this vulnerability to create arbitrary folder leading to…

  • CVE-2023-28058Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28050Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28026Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28044Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28060Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-25938Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28031Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28034Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28027Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28036Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28032Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28028Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28039Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28040Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

  • CVE-2023-28056Jun 23, 2023
    risk 0.00cvss epss 0.00

    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user with administrator privileges may potentially exploit this vulnerability in order to modify a UEFI variable.

Page 18 of 31