Vulnerabilidades em DELL EMC
97 resultadosCVE-2018-11069MEDIUMRSA BSAFE SSL-J versions prior to 6.2.4 contain a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher EPSS 1.3%CVE-2018-1221—In cf-deployment before 1.14.0 and routing-release before 0.172.0, the Cloud Foundry Gorouter mishandles WebSocket requests for AWS ApplicatEPSS 1.2%CVE-2018-1196—Spring Boot supports an embedded launch script that can be used to easily run the application as a systemd or init.d linux service. The scriEPSS 1.2%CVE-2018-1246MEDIUMDell EMC Unity and UnityVSA contains reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploEPSS 1.1%CVE-2019-3754MEDIUMDell EMC Unity Operating Environment versions prior to 5.0.0.0.5.116, Dell EMC UnityVSA versions prior to 5.0.0.0.5.116 and Dell EMC VNXe320EPSS 1.1%CVE-2018-1233—RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are affected by a cross-site scripting vulneraEPSS 1.1%CVE-2019-3734MEDIUMDell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain an improper authorization vulnerability in NAS Server quotas configuratiEPSS 1.1%CVE-2018-11077—Dell EMC Avamar and Integrated Data Protection Appliance Command Injection VulnerabilityEPSS 1.0%CVE-2018-1195—In Cloud Controller versions prior to 1.46.0, cf-deployment versions prior to 1.3.0, and cf-release versions prior to 283, Cloud Controller EPSS 1.0%CVE-2018-15774LOWiDRAC7/iDRAC8/iDRAC9 - Privilege Escalation VulnerabilityEPSS 0.9%CVE-2019-3704HIGHVNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate EPSS 0.9%CVE-2018-1249MEDIUMiDRAC9 versions prior to 3.21.21.21 did not enforce the use of TLS/SSL for a connection to iDRAC web server for certain URLsEPSS 0.9%CVE-2018-11076—Dell EMC Avamar and Integrated Data Protection Appliance Information Exposure VulnerabilityEPSS 0.8%CVE-2022-34456HIGH
Dell EMC Metro node, Version(s) prior to 7.1, contain a Code Injection Vulnerability. An authenticated nonprivileged attacker could potentiEPSS 0.8%CVE-2019-3710HIGHDSA-2019-034: Dell EMC Networking OS10 Undocumented Default Cryptographic Key VulnerabilityEPSS 0.8%CVE-2018-11078MEDIUMDell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability. A remote authenticated malicious usEPSS 0.8%CVE-2019-3751MEDIUMDell EMC Enterprise Copy Data Management (eCDM) versions 1.0, 1.1, 2.0, 2.1, and 3.0 contain a certificate validation vulnerability. An unauEPSS 0.7%CVE-2018-11050—Dell EMC NetWorker versions between 9.0 and 9.1.1.8 through 9.2.1.3, and the version 18.1.0.1 contain a Clear-Text authentication over netwoEPSS 0.7%CVE-2019-3727MEDIUMOS command injection vulnerabilityEPSS 0.7%CVE-2019-3753HIGHDell EMC PowerConnect 8024, 7000, M6348, M6220, M8024 and M8024-K running firmware versions prior to 5.1.15.2 contain a plain-text password EPSS 0.6%