Dell

Smartfabric Storage Software

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2023-32485

  • EPSS 0.25%
  • Veröffentlicht 05.10.2023 19:15:11
  • Zuletzt bearbeitet 21.11.2024 08:03:27

Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability and escalate privileges up to the highest administration level. This is a cr...

8.8

CVE-2023-4401

  • EPSS 0.43%
  • Veröffentlicht 05.10.2023 18:15:13
  • Zuletzt bearbeitet 21.11.2024 08:35:04

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the ‘more’ command. A local or remote authenticated attacker could potentially exploit this vulnerability, leading to the ability t...

8.8

CVE-2023-43068

  • EPSS 0.34%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. An authenticated remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands....

7.8

CVE-2023-43069

  • EPSS 0.09%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. An authenticated local attacker could potentially exploit this vulnerability, leading to possible injection of parameters to curl or do...

6.5

CVE-2023-43070

  • EPSS 0.06%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. A remote authenticated attacker could potentially exploit this vulnerability, leading to modify or write arbitrary files to arbitrary...

5.4

CVE-2023-43071

  • EPSS 0.11%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages in the GUI. A remote authenticated attacker could p...

7.8

CVE-2023-43072

  • EPSS 0.03%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI. A local possibly unauthenticated attacker could potentially exploit this vulnerability, leading to ability to execute arbritrary shell...

6.5

CVE-2023-43073

  • EPSS 0.07%
  • Veröffentlicht 05.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:23:40

Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. An authenticated remote attacker could potentially exploit this vulnerability, leading to gaining unauthorized access t...

9.8

CVE-2022-31232

  • EPSS 1.19%
  • Veröffentlicht 30.08.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 07:04:11

SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access and perform actions on the affected system.