Dell : Security Vulnerabilities, CVEs, CVSS score >= 1

CVE-2023-32479

Public exploit
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions prior to 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vulnerability by replacing binaries in installed directory and taking reverse shell of the system leading to Privilege Escalation.
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-02-06
Updated
2024-02-13

CVE-2021-21551

Known exploited
Public exploit
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
Max CVSS
8.8
EPSS Score
0.22%
Published
2021-05-04
Updated
2023-10-05
CISA KEV Added
2022-03-31

CVE-2009-0695

Public exploit
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action.
Max CVSS
7.5
EPSS Score
67.87%
Published
2012-06-19
Updated
2012-06-26

CVE-2004-0331

Public exploit
Heap-based buffer overflow in Dell OpenManage Web Server 3.4.0 allows remote attackers to cause a denial of service (crash) via a HTTP POST with a long application variable.
Max CVSS
5.0
EPSS Score
95.24%
Published
2004-11-23
Updated
2017-07-11
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close