cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-36288,https://securityvulnerability.io/vulnerability/CVE-2021-36288,Path Traversal Vulnerability in Dell VNX2 for File Products,"The Dell VNX2 for File prior to version 8.1.21.266 is susceptible to a path traversal vulnerability. This weakness allows unauthenticated users to manipulate file paths, which can result in unauthorized reading or writing of sensitive files within the system. Such exposure may lead to potential data leaks and unauthorized modification, emphasizing the critical need for timely updates and patches to safeguard against these security risks.",Dell,Vnx2,8.6,HIGH,0.0024399999529123306,false,,false,false,false,,,false,false,,2022-04-08T20:15:00.000Z,0
CVE-2021-36287,https://securityvulnerability.io/vulnerability/CVE-2021-36287,Unauthenticated Remote Code Execution on Dell VNX2 Products,"Dell VNX2 for file versions up to 8.1.21.266 are exposed to a significant vulnerability that enables unauthenticated users to execute arbitrary commands on the affected systems. This could potentially lead to unauthorized access and manipulation of sensitive data, posing a severe risk to data integrity and system reliability.",Dell,Vnx2,7.3,HIGH,0.006440000142902136,false,,false,false,false,,,false,false,,2022-04-08T20:15:00.000Z,0
CVE-2021-36290,https://securityvulnerability.io/vulnerability/CVE-2021-36290,Privilege Escalation Vulnerability in Dell VNX2 for File,"Dell VNX2 for File versions 8.1.21.266 and prior contain a vulnerability that allows a local malicious administrator to exploit the system and gain unauthorized elevated privileges. This vulnerability exposes the affected systems to potential abuse, making it crucial for users to apply the necessary security updates to mitigate the risk.",Dell,Vnx2,6.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-04-08T20:15:00.000Z,0
CVE-2021-36293,https://securityvulnerability.io/vulnerability/CVE-2021-36293,Privilege Escalation Vulnerability in Dell VNX2 for File Software,"Dell VNX2 for File versions up to 8.1.21.266 are susceptible to a privilege escalation vulnerability. This issue allows a local malicious administrator to exploit the flaw, potentially granting elevated privileges within the system. Organizations utilizing these affected versions should implement the necessary security updates and review their access controls to mitigate this risk.",Dell,Vnx2,6.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2022-04-08T20:15:00.000Z,0
CVE-2019-3704,https://securityvulnerability.io/vulnerability/CVE-2019-3704,,"VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudores, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.",Dell,Vnx Control Station In Dell Emc Vnx2 Oe For File,7.8,HIGH,0.0006000000284984708,false,,false,false,false,,,false,false,,2019-02-07T19:29:00.000Z,0
CVE-2018-1183,https://securityvulnerability.io/vulnerability/CVE-2018-1183,,"In Dell EMC Unisphere for VMAX Virtual Appliance versions prior to 8.4.0.8, Dell EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.8, Dell EMC VASA Provider Virtual Appliance versions prior to 8.4.0.512, Dell EMC SMIS versions prior to 8.4.0.6, Dell EMC VMAX Embedded Management (eManagement) versions prior to and including 1.4.0.347, Dell EMC VNX2 Operating Environment (OE) for File versions prior to 8.1.9.231, Dell EMC VNX2 Operating Environment (OE) for Block versions prior to 05.33.009.5.231, Dell EMC VNX1 Operating Environment (OE) for File versions prior to 7.1.82.0, Dell EMC VNX1 Operating Environment (OE) for Block versions prior to 05.32.000.5.225, Dell EMC VNXe3200 Operating Environment (OE) all versions, Dell EMC VNXe1600 Operating Environment (OE) versions prior to 3.1.9.9570228, Dell EMC VNXe 3100/3150/3300 Operating Environment (OE) all versions, Dell EMC ViPR SRM versions 3.7, 3.7.1, 3.7.2 (only if using Dell EMC Host Interface for Windows), Dell EMC ViPR SRM versions 4.0, 4.0.1, 4.0.2, 4.0.3 (only if using Dell EMC Host Interface for Windows), Dell EMC XtremIO versions 4.x, Dell EMC VMAX eNAS version 8.x, Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968, ECOM is affected by a XXE injection vulnerability due to the configuration of the XML parser shipped with the product. XXE Injection attack may occur when XML input containing a reference to an external entity (defined by the attacker) is processed by an affected XML parser. XXE Injection may allow attackers to gain unauthorized access to files containing sensitive information or may be used to cause denial-of-service.",Dell,"Dell Emc Unisphere For Vmax Virtual Appliance, Dell Emc Solutions Enabler Virtual Appliance, Dell Emc Vasa Provider Virtual Appliance, Dell Emc Smis, Dell Emc Vmax Embedded Management (emanagement), Dell Emc Vnx2 Operating Environment (oe) For File, Dell Emc Vnx2 Operating Environment (oe) For Block, Dell Emc Vnx1 Operating Environment (oe) For File, Dell Emc Vnx1 Operating Environment (oe) For Block, Dell Emc Vnxe3200 Operating Environment (oe), Dell Emc Vnxe1600 Operating Environment (oe), Dell Emc Vnxe 3100/3150/3300 Operating Environment (oe), Dell Emc Vipr Srm, Dell Emc Vipr Srm, Dell Emc Xtremio, Dell Emc Vmax Enas, Dell Emc Unity Operating Environment (oe)",9.8,CRITICAL,0.002460000105202198,false,,false,false,false,,,false,false,,2018-04-30T20:29:00.000Z,0
CVE-2017-14383,https://securityvulnerability.io/vulnerability/CVE-2017-14383,,"In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary HTML code in the user's browser session in the context of the affected web application.",Dell,Dell Emc Vnx2 Versions Prior To Operating Environment For File 8.1.9.217 And Dell Emc Vnx1 Versions Prior To Operating Environment For File 7.1.80.8,6.1,MEDIUM,0.0008699999889358878,false,,false,false,false,,,false,false,,2018-01-04T06:00:00.000Z,0