Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.8

HIGH

CVE-2021-36297

SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administrative action that is not a default part of the SOSInstal...

Affected Products : supportassist_for_home_pcs
EPSS Score: %0.05

Published: Sep. 28, 2021

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-36296

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authenticated remote code execution vulnerability. A remote malicious user with privileges may exploit this vulnerability to execute commands on the system....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000
EPSS Score: %1.36

Published: Jan. 25, 2022

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-36295

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authenticated remote code execution vulnerability. A remote malicious user with privileges may exploit this vulnerability to execute commands on the system....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000
EPSS Score: %1.36

Published: Jan. 25, 2022

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-36294

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. A remote unauthenticated attacker may exploit this vulnerability by forging a cookie to login as any user....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000
EPSS Score: %0.24

Published: Jan. 25, 2022

Modified: Nov. 21, 2024
6.7

MEDIUM

CVE-2021-36293

Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability. A local malicious admin may potentially exploit vulnerability and gain elevated privileges....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000 vnxe1600
EPSS Score: %0.13

Published: Apr. 08, 2022

Modified: Nov. 21, 2024
6.7

MEDIUM

CVE-2021-36290

Dell VNX2 for File version 8.1.21.266 and earlier, contain a privilege escalation vulnerability. A local malicious admin may potentially exploit vulnerability and gain privileges....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000 vnxe1600
EPSS Score: %0.11

Published: Apr. 08, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-36289

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain a sensitive information disclosure vulnerability. A local malicious user may exploit this vulnerability to read sensitive information and use it....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000
EPSS Score: %0.12

Published: Jan. 25, 2022

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2021-36288

Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which may lead unauthenticated users to read/write restricted files...

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000 vnxe1600
EPSS Score: %0.67

Published: Apr. 08, 2022

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2021-36287

Dell VNX2 for file version 8.1.21.266 and earlier, contain an unauthenticated remote code execution vulnerability which may lead unauthenticated users to execute commands on the system....

Affected Products : emc_unity_operating_environment vnx_vg10 vnx_vg50 vnx5200 vnx5400 vnx5600 vnx5800 vnx7600 vnx8000 vnxe1600
EPSS Score: %4.68

Published: Apr. 08, 2022

Modified: Nov. 21, 2024
7.1

HIGH

CVE-2021-36286

Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by any...

Affected Products : supportassist_for_home_pcs supportassist_client_consumer
EPSS Score: %0.11

Published: Sep. 28, 2021

Modified: Nov. 21, 2024
5.7

MEDIUM

CVE-2021-36285

Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A local authenticated malicious administrator could exploit this vulnerability to bypass excessive NVMe password attempt mitigations in order to carry out a bru...

Affected Products : cpg_bios latitude_5310_2-in-1_firmware latitude_5320_firmware latitude_5400_firmware latitude_5411_firmware latitude_5500_firmware latitude_5511_firmware latitude_5520_firmware latitude_7212_rugged_extreme_tablet_firmware latitude_7280_firmware +33 more products
EPSS Score: %0.05

Published: Sep. 28, 2021

Modified: Nov. 21, 2024
5.7

MEDIUM

CVE-2021-36284

Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A local authenticated malicious administrator could exploit this vulnerability to bypass excessive admin password attempt mitigations in order to carry out a br...

Affected Products : cpg_bios latitude_5310_2-in-1_firmware latitude_5320_firmware latitude_5400_firmware latitude_5411_firmware latitude_5500_firmware latitude_5511_firmware latitude_5520_firmware latitude_7212_rugged_extreme_tablet_firmware latitude_7280_firmware +33 more products
EPSS Score: %0.05

Published: Sep. 28, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-36283

Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM....

Affected Products : cpg_bios chengming_3990_firmware chengming_3991_firmware g3_15_3590_firmware inspiron_3493_firmware inspiron_3501_firmware inspiron_3593_firmware inspiron_3793_firmware inspiron_3880_firmware inspiron_3881_firmware +161 more products
EPSS Score: %0.04

Published: Sep. 28, 2021

Modified: Nov. 21, 2024
3.3

LOW

CVE-2021-36282

Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to gain access up to 24 bytes of data w...

Affected Products : emc_powerscale_onefs powerscale_onefs
EPSS Score: %0.05

Published: Aug. 16, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-36281

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. A low privileged authenticated user can potentially exploit this vulnerability to escalate privileges....

Affected Products : emc_powerscale_onefs powerscale_onefs
EPSS Score: %0.40

Published: Aug. 16, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-36280

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the cluster....

Affected Products : emc_powerscale_onefs powerscale_onefs
EPSS Score: %0.05

Published: Aug. 16, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-36279

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the cluster....

Affected Products : emc_powerscale_onefs powerscale_onefs
EPSS Score: %0.04

Published: Aug. 16, 2021

Modified: Nov. 21, 2024
8.1

HIGH

CVE-2021-36278

Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. A local malicious user with ISI_PRIV_LOGIN_SSH, ISI_PRIV_LOGIN_CONSOLE, or ISI_PRIV_SYS_SUPPORT privileges may exploit this...

Affected Products : emc_powerscale_onefs powerscale_onefs
EPSS Score: %0.19

Published: Aug. 16, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-36277

Dell Command | Update, Dell Update, and Alienware Update versions before 4.3 contains an Improper Verification of Cryptographic Signature Vulnerability. A local authenticated malicious user may exploit this vulnerability by executing arbitrary code on the...

Affected Products : alienware_command_center alienware_command_center_application command_\|_update update\/alienware_update
EPSS Score: %0.02

Published: Aug. 09, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-36276

Dell DBUtilDrv2.sys driver (versions 2.5 and 2.6) contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required....

Affected Products : dbutildrv2.sys_firmware dbutil_2_3.sys dbutil
EPSS Score: %0.04

Published: Aug. 09, 2021

Modified: Nov. 21, 2024

Showing 20 of 291647 Results

Latest CVE Feed

7.8

9.0

9.0

9.8

6.7

6.7

7.8

9.1

10.0

7.1

5.7

5.7

7.5

3.3

8.8

7.8

7.8

8.1

7.8

8.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable