Vulnerabilities in Dell
1,415 resultsCVE-2025-24922HIGHDell ControlVault3/ControlVault3 Plus securebio_identify stack-based buffer overflow vulnerabilityEPSS 2.2%CVE-2019-3746CRITICALDell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of authentication attempts to the ACM API. An auEPSS 2.1%CVE-2022-34427HIGHDell Container Storage Modules 1.2 contains an OS Command Injection in goiscsi and gobrick libraries. A remote unauthenticated attacker coulEPSS 2.1%CVE-2021-21585CRITICALDell OpenManage Enterprise versions prior to 3.6.1 contain an OS command injection vulnerability in RACADM and IPMI tools. A remote authentiEPSS 2.1%CVE-2025-22398CRITICALDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 2.1%CVE-2021-36313CRITICALDell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentiaEPSS 2.1%CVE-2019-3711MEDIUMDSA-2019-038: RSA® Authentication Manager Insecure Credential Management VulnerabilityEPSS 2.0%CVE-2019-18572HIGHThe RSA Identity Governance and Lifecycle and RSA Via Lifecycle and Governance products prior to 7.1.1 P03 contain an Improper AuthenticatioEPSS 2.0%CVE-2020-5350HIGHDell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 contain a command injection vulnerability in the ACM componenEPSS 2.0%CVE-2019-3766HIGHDell EMC ECS versions prior to 3.4.0.0 contain an improper restriction of excessive authentication attempts vulnerability. An unauthenticateEPSS 1.9%CVE-2020-29491CRITICALDell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could potEPSS 1.8%CVE-2022-26869CRITICALDell PowerStore versions 2.0.0.x, 2.0.1.x and 2.1.0.x contains an open port vulnerability. A remote unauthenticated attacker could potentialEPSS 1.8%CVE-2020-5366HIGHDell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. A remote authenticated malicious user with low privilegEPSS 1.8%CVE-2020-26195MEDIUMDell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directoEPSS 1.8%CVE-2022-29084HIGHDell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUEPSS 1.8%CVE-2025-24919HIGHDell ControlVault3/ControlVault3 Plus deserialization of untrusted input vulnerabilityEPSS 1.8%CVE-2023-48667HIGH
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in EPSS 1.8%CVE-2023-32462CRITICAL
Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection vulnerability when using remote user authenticatioEPSS 1.8%CVE-2020-29492CRITICALDell Wyse ThinOS 8.6 and prior versions contain an insecure default configuration vulnerability. A remote unauthenticated attacker could potEPSS 1.7%CVE-2023-48664HIGH
Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. A remote malicious user with high privileges could EPSS 1.7%