Dell

Storage Manager

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-46425

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 24.10.2025 14:15:42
  • Zuletzt bearbeitet 04.11.2025 14:26:41

Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to U...

7.5

CVE-2025-43994

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 24.10.2025 14:14:41
  • Zuletzt bearbeitet 04.11.2025 14:31:14

Dell Storage Center - Dell Storage Manager, version(s) DSM 20.1.21, contain(s) a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Infor...

9.8

CVE-2025-43995

Medienbericht
  • EPSS 0.32%
  • Veröffentlicht 24.10.2025 14:09:55
  • Zuletzt bearbeitet 04.11.2025 14:43:05

Dell Storage Center - Dell Storage Manager, version(s) 20.1.21, contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. ...

8

CVE-2025-22476

  • EPSS 0.08%
  • Veröffentlicht 06.05.2025 16:08:47
  • Zuletzt bearbeitet 04.11.2025 17:07:09

Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with adjacent network access could potentially ...

8.8

CVE-2025-22477

  • EPSS 0.06%
  • Veröffentlicht 06.05.2025 16:03:29
  • Zuletzt bearbeitet 13.05.2025 20:17:36

Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Authentication vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Elevation of privil...

8.1

CVE-2025-22478

  • EPSS 0.04%
  • Veröffentlicht 06.05.2025 15:55:03
  • Zuletzt bearbeitet 13.05.2025 20:17:50

Dell Storage Center - Dell Storage Manager, version(s) 20.1.20, contain(s) an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, ...

4.3

CVE-2025-22479

  • EPSS 0.03%
  • Veröffentlicht 06.05.2025 15:46:45
  • Zuletzt bearbeitet 13.05.2025 20:18:11

Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. An unauthenticated attacker with adjacent network access could potentially exp...

5.2

CVE-2025-23379

  • EPSS 0.04%
  • Veröffentlicht 06.05.2025 15:25:06
  • Zuletzt bearbeitet 13.05.2025 20:18:55

Dell Storage Center - Dell Storage Manager, version(s) 21.0.20, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with adjacent network access could potential...

6.5

CVE-2017-14384

  • EPSS 4.6%
  • Veröffentlicht 16.03.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:12:40

In Dell Storage Manager versions earlier than 16.3.20, the EMConfigMigration service is affected by a directory traversal vulnerability. A remote malicious user could potentially exploit this vulnerability to read unauthorized files by supplying spec...

9.8

CVE-2017-14374

  • EPSS 0.71%
  • Veröffentlicht 06.12.2017 00:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The SMI-S service in Dell Storage Manager versions earlier than 16.3.20 (aka 2016 R3.20) is protected using a hard-coded password. A remote user with the knowledge of the password might potentially disable the SMI-S service via HTTP requests, affecti...