CVE-2022-31228
- EPSS 1.37%
- Published 12.10.2022 20:15:10
- Last modified 21.11.2024 07:04:11
Dell EMC XtremIO versions prior to X2 6.4.0-22 contain a bruteforce vulnerability. A remote unauthenticated attacker can potentially exploit this vulnerability and gain access to an admin account.
CVE-2021-21549
- EPSS 0.12%
- Published 21.05.2021 20:15:07
- Last modified 21.11.2024 05:48:34
Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. A non-privileged attacker could potentially exploit this vulnerability, leading to a privileged victim application user being tricked into sending ...
CVE-2019-18576
- EPSS 0.12%
- Published 13.03.2020 21:15:11
- Last modified 21.11.2024 04:33:19
Dell EMC XtremIO XMS versions prior to 6.3.0 contain an information disclosure vulnerability where OS users’ passwords are logged in local files. Malicious local users with access to the log files may use the exposed passwords to gain access to Xtrem...
CVE-2019-18577
- EPSS 0.1%
- Published 13.03.2020 21:15:11
- Last modified 21.11.2024 04:33:19
Dell EMC XtremIO XMS versions prior to 6.3.0 contain an incorrect permission assignment vulnerability. A malicious local user with XtremIO xinstall privileges may exploit this vulnerability to gain root access.
- EPSS 0.56%
- Published 13.03.2020 21:15:11
- Last modified 21.11.2024 04:33:20
Dell EMC XtremIO XMS versions prior to 6.3.0 contain a stored cross-site scripting vulnerability. A low-privileged malicious remote user of XtremIO may exploit this vulnerability to store malicious HTML or JavaScript code in application fields. When ...