Latest CVE Feed
-
4.3
MEDIUMCVE-2021-36349
Dell EMC Data Protection Central versions 19.5 and prior contain a Server Side Request Forgery vulnerability in the DPC DNS client processing. A remote malicious user could potentially exploit this vulnerability, allowing port scanning of external hosts.... Read more
- EPSS Score: %0.13
- Published: Jan. 24, 2022
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-36348
iDRAC9 versions prior to 5.00.20.00 contain an input injection vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to cause information disclosure or denial of service by supplying specially ... Read more
- EPSS Score: %0.42
- Published: Jan. 25, 2022
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-36347
iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to 2.82.82.82 contain a stack-based buffer overflow vulnerability. An authenticated remote attacker with high privileges could potentially exploit this vulnerability to control process executio... Read more
- EPSS Score: %1.77
- Published: Jan. 25, 2022
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-36346
Dell iDRAC 8 prior to version 2.82.82.82 contain a denial of service vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to deny access to the iDRAC webserver.... Read more
- EPSS Score: %1.22
- Published: Jan. 25, 2022
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36343
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.... Read more
- EPSS Score: %0.04
- Published: Jan. 24, 2022
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-36342
Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM.... Read more
- EPSS Score: %0.04
- Published: Jan. 24, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36341
Dell Wyse Device Agent version 14.5.4.1 and below contain a sensitive data exposure vulnerability. A local authenticated user with low privileges could potentially exploit this vulnerability in order to access sensitive information.... Read more
Affected Products : wyse_device_agent- EPSS Score: %0.05
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-36339
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.... Read more
- EPSS Score: %0.15
- Published: Jan. 21, 2022
- Modified: Nov. 21, 2024
-
8.0
HIGHCVE-2021-36338
Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability. An adjacent malicious user could potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. CVE... Read more
- EPSS Score: %0.11
- Published: Jan. 21, 2022
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-36337
Dell Wyse Management Suite version 3.3.1 and prior support insecure Transport Security Protocols TLS 1.0 and TLS 1.1 which are susceptible to Man-In-The-Middle attacks thereby compromising Confidentiality and Integrity of data.... Read more
Affected Products : wyse_management_suite- EPSS Score: %0.10
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-36336
Wyse Management Suite 3.3.1 and below versions contain a deserialization vulnerability that could allow an unauthenticated attacker to execute code on the affected system.... Read more
Affected Products : wyse_management_suite- EPSS Score: %3.06
- Published: Dec. 21, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-36335
Dell EMC CloudLink 7.1 and all prior versions contain an Improper Input Validation Vulnerability. A remote low privileged attacker, may potentially exploit this vulnerability, leading to execution of arbitrary files on the server... Read more
- EPSS Score: %0.43
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2021-36334
Dell EMC CloudLink 7.1 and all prior versions contain a CSV formula Injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to arbitrary code execution on end user machine... Read more
- EPSS Score: %0.47
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36333
Dell EMC CloudLink 7.1 and all prior versions contain a Buffer Overflow Vulnerability. A local low privileged attacker, may potentially exploit this vulnerability, leading to an application crash.... Read more
- EPSS Score: %0.04
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-36332
Dell EMC CloudLink 7.1 and all prior versions contain a HTML and Javascript Injection Vulnerability. A remote low privileged attacker, may potentially exploit this vulnerability, directing end user to arbitrary and potentially malicious websites.... Read more
- EPSS Score: %0.11
- Published: Nov. 23, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-36330
Dell EMC Streaming Data Platform versions before 1.3 contain an Insufficient Session Expiration Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to reuse old session artifacts to impersonate a legitimate user.... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.85
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-36329
Dell EMC Streaming Data Platform versions before 1.3 contain an Indirect Object Reference Vulnerability. A remote malicious user may potentially exploit this vulnerability to gain sensitive information.... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.22
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-36328
Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A remote malicious user may potentially exploit this vulnerability to execute SQL commands to perform unauthorized actions and retrieve sensitive information from ... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.62
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-36327
Dell EMC Streaming Data Platform versions before 1.3 contain a Server Side Request Forgery Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to perform port scanning of internal networks and make HTTP requests to ... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.30
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-36326
Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the... Read more
Affected Products : emc_streaming_data_platform- EPSS Score: %0.40
- Published: Nov. 30, 2021
- Modified: Nov. 21, 2024