Dell

Cloudlink

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2025-26484

  • EPSS 0.05%
  • Veröffentlicht 14.08.2025 14:24:13
  • Zuletzt bearbeitet 18.08.2025 18:20:31

Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.

7.2

CVE-2024-38482

  • EPSS 0.33%
  • Veröffentlicht 02.08.2024 04:17:27
  • Zuletzt bearbeitet 05.09.2024 16:04:53

CloudLink, versions 7.1.x and 8.x, contain an Improper check or handling of Exceptional Conditions Vulnerability in Cluster Component. A highly privileged malicious user with remote access could potentially exploit this vulnerability, leading to exec...

5.5

CVE-2024-37137

  • EPSS 0.02%
  • Veröffentlicht 28.06.2024 02:15:03
  • Zuletzt bearbeitet 03.02.2025 15:26:15

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure.

7.5

CVE-2023-28076

  • EPSS 0.1%
  • Veröffentlicht 16.05.2023 16:15:09
  • Zuletzt bearbeitet 21.11.2024 07:54:21

CloudLink 7.1.2 and all prior versions contain a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability leading to some information disclosure.

9.8

CVE-2022-34379

  • EPSS 1.41%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:09:23

Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. A remote attacker, with the knowledge of the active directory usernames, could potentially exploit this vulnerability to gain unauthorized access to the s...

8.2

CVE-2022-34380

  • EPSS 0.06%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:09:23

Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high privileged local attacker may potentially exploit this vulnerability leading to authentication bypass and access t...

6.5

CVE-2022-24414

  • EPSS 0.33%
  • Veröffentlicht 26.05.2022 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:50:22

Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should...

9.1

CVE-2021-36312

  • EPSS 0.21%
  • Veröffentlicht 23.11.2021 20:15:11
  • Zuletzt bearbeitet 21.11.2024 06:13:28

Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A remote high privileged attacker, with the knowledge of the hard-coded credentials, may potentially exploit this vulnerability to gain unauthorized access to ...

9

CVE-2021-36313

  • EPSS 1.04%
  • Veröffentlicht 23.11.2021 20:15:11
  • Zuletzt bearbeitet 21.11.2024 06:13:28

Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underly...