Latest CVE Feed
-
8.8
HIGHCVE-2021-36328
Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A remote malicious user may potentially exploit this vulnerability to execute SQL commands to perform unauthorized actions and retrieve sensitive information from ... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.62
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-36327
Dell EMC Streaming Data Platform versions before 1.3 contain a Server Side Request Forgery Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to perform port scanning of internal networks and make HTTP requests to ... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.30
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-36326
Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.40
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36325
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.... Read more
- EPSS Score: %0.04
- Published: Nov. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36324
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.... Read more
- EPSS Score: %0.04
- Published: Nov. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36323
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.... Read more
- EPSS Score: %0.04
- Published: Nov. 12, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-36322
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain a host header injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary host header values to poison the web-cache or tr... Read more
Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products- EPSS Score: %0.67
- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36321
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an improper input validation vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by sending specially crafted data to trigger a denial of service.... Read more
Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products- EPSS Score: %0.39
- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-36320
Dell Networking X-Series firmware versions prior to 3.0.1.8 contain an authentication bypass vulnerability. A remote unauthenticated attacker may potentially hijack a session and access the webserver by forging the session ID.... Read more
Affected Products : x1008p_firmware x1018p_firmware x1026p_firmware x1052p_firmware x4012_firmware x1008_firmware x1018_firmware x1026_firmware x1052_firmware x4012 +8 more products- EPSS Score: %0.82
- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
3.3
LOWCVE-2021-36319
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. A low privileged authenticated malicious user can gain access to SNMP authentication failure messages.... Read more
Affected Products : networking_os10- EPSS Score: %0.05
- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2021-36318
Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage vulnerability. A high privileged user could potentially exploit this vulnerability, leading to a complete outage.... Read more
Affected Products : emc_avamar_server- EPSS Score: %0.06
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
6.7
MEDIUMCVE-2021-36317
Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use ... Read more
- EPSS Score: %0.04
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-36316
Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious user with high privileges could potentially exploit this vulnerability, leading to the disclosure of the AUI info a... Read more
Affected Products : emc_avamar_server- EPSS Score: %0.23
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-36315
Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a critical vulnerability. Dell EMC recommends applying the... Read more
Affected Products : emc_powerscale_nodes_a100_firmware emc_powerscale_nodes_s210_firmware emc_powerscale_nodes_x410_firmware emc_powerscale_nodes_h400_firmware emc_powerscale_nodes_x210_firmware emc_powerscale_nodes_nl410_firmware emc_powerscale_nodes_a200_firmware emc_powerscale_nodes_a2000_firmware emc_powerscale_nodes_h500_firmware emc_powerscale_nodes_h600_firmware +28 more products- EPSS Score: %0.04
- Published: Nov. 12, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-36314
Dell EMC CloudLink 7.1 and all prior versions contain an Arbitrary File Creation Vulnerability. A remote unauthenticated attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary files on the end user system.... Read more
- EPSS Score: %0.77
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-36313
Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying O... Read more
Affected Products : cloudlink- EPSS Score: %1.04
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-36312
Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A remote high privileged attacker, with the knowledge of the hard-coded credentials, may potentially exploit this vulnerability to gain unauthorized access to the s... Read more
Affected Products : cloudlink- EPSS Score: %0.21
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-36311
Dell EMC Networker versions prior to 19.5 contain an Improper Authorization vulnerability. Any local malicious user with networker user privileges may exploit this vulnerability to upload malicious file to unauthorized locations and execute it.... Read more
- EPSS Score: %0.04
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2021-36310
Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled resource consumption flaw in its API service. A high-privileged API user may potentially exploit this vulnerability, leading to a denial of service.... Read more
Affected Products : networking_os10- EPSS Score: %0.32
- Published: Nov. 20, 2021
- Modified: Nov. 21, 2024
-
7.1
HIGHCVE-2021-36309
Dell Enterprise SONiC OS, versions 3.3.0 and earlier, contains a sensitive information disclosure vulnerability. An authenticated malicious user with access to the system may use the TACACS\Radius credentials stored to read sensitive information and use i... Read more
- EPSS Score: %0.27
- Published: Oct. 01, 2021
- Modified: Nov. 21, 2024