Dell

Hybrid Client

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-32476

  • EPSS 0.04%
  • Veröffentlicht 20.07.2023 14:15:11
  • Zuletzt bearbeitet 21.11.2024 08:03:26

Dell Hybrid Client version 2.0 contains a Sensitive Data Exposure vulnerability. An unauthenticated malicious user on the device can access hard coded secrets in javascript files.

7.5

CVE-2022-34430

  • EPSS 0.2%
  • Veröffentlicht 11.10.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:09:32

Dell Hybrid Client below 1.8 version contains a Zip Bomb Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.

6.5

CVE-2022-34431

  • EPSS 0.2%
  • Veröffentlicht 11.10.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:09:33

Dell Hybrid Client below 1.8 version contains a guest user profile corruption vulnerability. A WMS privilege attacker could potentially exploit this vulnerability, leading to DHC system not being accessible.

8.2

CVE-2022-34432

  • EPSS 0.52%
  • Veröffentlicht 11.10.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:09:33

Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders.

2.7

CVE-2022-34428

  • EPSS 0.3%
  • Veröffentlicht 30.09.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:09:32

Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary denial-of-service.

7.1

CVE-2022-34429

  • EPSS 0.07%
  • Veröffentlicht 30.09.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:09:32

Dell Hybrid Client below 1.8 version contains a Zip Slip Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.

3.3

CVE-2021-21534

  • EPSS 0.05%
  • Veröffentlicht 30.04.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:32

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain access to sensitive information via the local API.

7.8

CVE-2021-21535

  • EPSS 0.03%
  • Veröffentlicht 30.04.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:32

Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain root level access to the system.

5.5

CVE-2021-21536

  • EPSS 0.06%
  • Veröffentlicht 30.04.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:32

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to register the client to a server in order to view sensitive information.

5.5

CVE-2021-21537

  • EPSS 0.06%
  • Veröffentlicht 30.04.2021 18:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:32

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to view and exfiltrate sensitive information on the system.