Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.4

MEDIUM

CVE-2021-36332

Dell EMC CloudLink 7.1 and all prior versions contain a HTML and Javascript Injection Vulnerability. A remote low privileged attacker, may potentially exploit this vulnerability, directing end user to arbitrary and potentially malicious websites....

Affected Products : cloudlink emc_cloud_link
EPSS Score: %0.11

Published: Nov. 23, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-36330

Dell EMC Streaming Data Platform versions before 1.3 contain an Insufficient Session Expiration Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to reuse old session artifacts to impersonate a legitimate user....

Affected Products : emc_streaming_data_platform
EPSS Score: %0.85

Published: Nov. 30, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-36329

Dell EMC Streaming Data Platform versions before 1.3 contain an Indirect Object Reference Vulnerability. A remote malicious user may potentially exploit this vulnerability to gain sensitive information....

Affected Products : emc_streaming_data_platform
EPSS Score: %0.22

Published: Nov. 30, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-36328

Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A remote malicious user may potentially exploit this vulnerability to execute SQL commands to perform unauthorized actions and retrieve sensitive information from ...

Affected Products : emc_streaming_data_platform
EPSS Score: %0.62

Published: Nov. 30, 2021

Modified: Nov. 21, 2024
5.3

MEDIUM

CVE-2021-36327

Dell EMC Streaming Data Platform versions before 1.3 contain a Server Side Request Forgery Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to perform port scanning of internal networks and make HTTP requests to ...

Affected Products : emc_streaming_data_platform
EPSS Score: %0.30

Published: Nov. 30, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-36326

Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the...

Affected Products : emc_streaming_data_platform
EPSS Score: %0.40

Published: Nov. 30, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-36325

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM....

Affected Products : cpg_bios alienware_area_51m_r1_firmware alienware_area_51m_r2_firmware alienware_aurora_r11_firmware alienware_aurora_r12_firmware alienware_m15_r2_firmware alienware_m15_r3_firmware alienware_m17_r2_firmware alienware_m17_r3_firmware alienware_x15_r1_firmware +557 more products
EPSS Score: %0.04

Published: Nov. 12, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-36324

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM....

Affected Products : cpg_bios alienware_area_51m_r1_firmware alienware_area_51m_r2_firmware alienware_aurora_r11_firmware alienware_aurora_r12_firmware alienware_m15_r2_firmware alienware_m15_r3_firmware alienware_m17_r2_firmware alienware_m17_r3_firmware alienware_x15_r1_firmware +557 more products
EPSS Score: %0.04

Published: Nov. 12, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-36323

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM....

Affected Products : cpg_bios alienware_area_51m_r1_firmware alienware_area_51m_r2_firmware alienware_aurora_r11_firmware alienware_aurora_r12_firmware alienware_m15_r2_firmware alienware_m15_r3_firmware alienware_m17_r2_firmware alienware_m17_r3_firmware alienware_x15_r1_firmware +557 more products
EPSS Score: %0.04

Published: Nov. 12, 2021

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-36322

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary host header values to poison the web-cache or tr...

Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products
EPSS Score: %0.67

Published: Nov. 20, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-36321

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an improper input validation vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by sending specially crafted data to trigger a denial of service....

Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products
EPSS Score: %0.39

Published: Nov. 20, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-36320

Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an authentication bypass vulnerability. A remote unauthenticated attacker may potentially hijack a session and access the webserver by forging the session ID....

Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products
EPSS Score: %0.82

Published: Nov. 20, 2021

Modified: Nov. 21, 2024
3.3

LOW

CVE-2021-36319

Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. A low privileged authenticated malicious user can gain access to SNMP authentication failure messages....

Affected Products : networking_os10
EPSS Score: %0.05

Published: Nov. 20, 2021

Modified: Nov. 21, 2024
6.7

MEDIUM

CVE-2021-36318

Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage vulnerability. A high privileged user could potentially exploit this vulnerability, leading to a complete outage....

Affected Products : emc_avamar_server
EPSS Score: %0.06

Published: Dec. 21, 2021

Modified: Nov. 21, 2024
6.7

MEDIUM

CVE-2021-36317

Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use ...

Affected Products : emc_avamar_server emc_powerprotect_data_protection_appliance
EPSS Score: %0.04

Published: Dec. 21, 2021

Modified: Nov. 21, 2024
7.2

HIGH

CVE-2021-36316

Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious user with high privileges could potentially exploit this vulnerability, leading to the disclosure of the AUI info a...

Affected Products : emc_avamar_server
EPSS Score: %0.23

Published: Dec. 21, 2021

Modified: Nov. 21, 2024
7.2

HIGH

CVE-2021-36315

Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a critical vulnerability. Dell EMC recommends applying the...

Affected Products : emc_powerscale_nodes_a100_firmware emc_powerscale_nodes_s210_firmware emc_powerscale_nodes_x410_firmware emc_powerscale_nodes_h400_firmware emc_powerscale_nodes_x210_firmware emc_powerscale_nodes_nl410_firmware emc_powerscale_nodes_a200_firmware emc_powerscale_nodes_a2000_firmware emc_powerscale_nodes_h500_firmware emc_powerscale_nodes_h600_firmware +28 more products
EPSS Score: %0.04

Published: Nov. 12, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-36314

Dell EMC CloudLink 7.1 and all prior versions contain an Arbitrary File Creation Vulnerability. A remote unauthenticated attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary files on the end user system....

Affected Products : cloudlink emc_cloud_link
EPSS Score: %0.77

Published: Nov. 23, 2021

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2021-36313

Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying O...

Affected Products : cloudlink
EPSS Score: %1.04

Published: Nov. 23, 2021

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2021-36312

Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A remote high privileged attacker, with the knowledge of the hard-coded credentials, may potentially exploit this vulnerability to gain unauthorized access to the s...

Affected Products : cloudlink
EPSS Score: %0.21

Published: Nov. 23, 2021

Modified: Nov. 21, 2024

Showing 20 of 291531 Results

Latest CVE Feed

5.4

9.8

6.5

8.8

5.3

6.5

7.5

7.5

7.5

6.1

7.5

9.8

3.3

6.7

6.7

7.2

7.2

9.8

9.1

9.1

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable