Dell

Unity Operating Environment

45 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-22230

  • EPSS 0.44%
  • Published 12.02.2024 19:15:12
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains a Cross-site scripting vulnerability. An authenticated attacker could potentially exploit this vulnerability, stealing session information, masquerading as the affected user or carry out any actions that t...

7.8

CVE-2024-22228

  • EPSS 0.3%
  • Published 12.02.2024 19:15:12
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_cifssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating s...

7.8

CVE-2024-22227

  • EPSS 0.3%
  • Published 12.02.2024 19:15:12
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_dc utility. An authenticated attacker could potentially exploit this vulnerability, leading to the ability execute commands with root privileges.

7.8

CVE-2024-22225

  • EPSS 0.21%
  • Published 12.02.2024 19:15:11
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_supportassist utility. An authenticated attacker could potentially exploit this vulnerability, leading to execution of arbitrary operating system commands w...

7.8

CVE-2024-22224

  • EPSS 0.22%
  • Published 12.02.2024 19:15:11
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_nas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system co...

7.8

CVE-2024-22223

  • EPSS 0.18%
  • Published 12.02.2024 19:15:11
  • Last modified 21.11.2024 08:55:50

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability within its svc_cbr utility. An authenticated malicious user with local access could potentially exploit this vulnerability, leading to the execution of arbitrary OS co...

7.8

CVE-2024-22222

  • EPSS 0.19%
  • Published 12.02.2024 19:15:11
  • Last modified 21.11.2024 08:55:49

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability within its svc_udoctor utility. An authenticated malicious user with local access could potentially exploit this vulnerability, leading to the execution of arbitrary O...

6.5

CVE-2024-22221

  • EPSS 0.21%
  • Published 12.02.2024 19:15:11
  • Last modified 21.11.2024 08:55:49

Dell Unity, versions prior to 5.4, contains SQL Injection vulnerability. An authenticated attacker could potentially exploit this vulnerability, leading to exposure of sensitive information.

7.8

CVE-2024-0170

  • EPSS 0.3%
  • Published 12.02.2024 19:15:10
  • Last modified 21.11.2024 08:45:59

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_cava utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system c...

5.4

CVE-2024-0169

  • EPSS 0.4%
  • Published 12.02.2024 19:15:10
  • Last modified 21.11.2024 08:45:59

Dell Unity, version(s) 5.3 and prior, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading...