» 2022 » 4월

CVE-2022-22558

Posted on 2022년 4월 22일2022년 4월 22일 by admin

CVE-2022-22558

Dell PowerEdge Server BIOS contains an Improper SMM communication buffer verification vulnerability. A Local High Privileged attacker could potentially exploit this vulnerability leading to arbitrary writes or denial of service.

Source: CVE-2022-22558

CVE-2022-24423

Posted on 2022년 4월 22일2022년 4월 22일 by admin

CVE-2022-24423

Dell EMC iDRAC8 versions 2.81.81 and earlier contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion, resulting in a denial of service (DoS) condition.

Source: CVE-2022-24423

CVE-2022-26856

Posted on 2022년 4월 22일2022년 4월 22일 by admin

CVE-2022-26856

Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application’s database with privileges of the compromised account.

Source: CVE-2022-26856

CVE-2022-24424

Posted on 2022년 4월 22일2022년 4월 22일 by admin

CVE-2022-24424

Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server. A remote unauthenticated attacker may potentially exploit this vulnerability to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.

Source: CVE-2022-24424