Dell

Cloudlink

9 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2025-26484

  • EPSS 0.05%
  • Published 14.08.2025 14:24:13
  • Last modified 18.08.2025 18:20:31

Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.

7.2

CVE-2024-38482

  • EPSS 0.33%
  • Published 02.08.2024 04:17:27
  • Last modified 05.09.2024 16:04:53

CloudLink, versions 7.1.x and 8.x, contain an Improper check or handling of Exceptional Conditions Vulnerability in Cluster Component. A highly privileged malicious user with remote access could potentially exploit this vulnerability, leading to exec...

5.5

CVE-2024-37137

  • EPSS 0.02%
  • Published 28.06.2024 02:15:03
  • Last modified 03.02.2025 15:26:15

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure.

7.5

CVE-2023-28076

  • EPSS 0.1%
  • Published 16.05.2023 16:15:09
  • Last modified 21.11.2024 07:54:21

CloudLink 7.1.2 and all prior versions contain a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability leading to some information disclosure.

9.8

CVE-2022-34379

  • EPSS 1.41%
  • Published 01.09.2022 19:15:12
  • Last modified 21.11.2024 07:09:23

Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. A remote attacker, with the knowledge of the active directory usernames, could potentially exploit this vulnerability to gain unauthorized access to the s...

8.2

CVE-2022-34380

  • EPSS 0.06%
  • Published 01.09.2022 19:15:12
  • Last modified 21.11.2024 07:09:23

Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high privileged local attacker may potentially exploit this vulnerability leading to authentication bypass and access t...

6.5

CVE-2022-24414

  • EPSS 0.33%
  • Published 26.05.2022 16:15:07
  • Last modified 21.11.2024 06:50:22

Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should...

9.1

CVE-2021-36312

  • EPSS 0.21%
  • Published 23.11.2021 20:15:11
  • Last modified 21.11.2024 06:13:28

Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A remote high privileged attacker, with the knowledge of the hard-coded credentials, may potentially exploit this vulnerability to gain unauthorized access to ...

9

CVE-2021-36313

  • EPSS 1.04%
  • Published 23.11.2021 20:15:11
  • Last modified 21.11.2024 06:13:28

Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underly...