Lucene search
K

331 matches found

CNVD
CNVD
added 2024/02/22 12:0 a.m.12 views

Dell PowerProtect Data Manager Operating System Command Injection Vulnerability

Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An operating system command injection vulnerability exists in Dell PowerProtect Data Manager version 19.15 an...

7.2CVSS7.3AI score0.01439EPSS
Exploits0References1
CNVD
CNVD
added 2024/02/22 12:0 a.m.22 views

Dell PowerProtect Data Manager Authorization Issues Vulnerability (CNVD-2024-09644)

Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.15 and earlier, whic...

8.8CVSS7AI score0.0056EPSS
Exploits0References1
NVD
NVD
added 2024/02/13 8:16 a.m.12 views

CVE-2024-22445

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...

7.2CVSS7.3AI score0.01439EPSS
Exploits0References1
OSV
OSV
added 2024/02/13 8:16 a.m.2 views

CVE-2024-22454

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromise...

8.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2024/02/13 8:16 a.m.3 views

CVE-2024-22445

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...

7.2CVSS6AI score0.01439EPSS
Exploits0References1
Prion
Prion
added 2024/02/13 8:16 a.m.13 views

Design/Logic Flaw

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain a weak password recovery mechanism for forgotten passwords. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to unauthorized access to the application with privileges of the compromise...

6.8CVSS7.6AI score0.0056EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/02/13 8:16 a.m.17 views

Command injection

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...

5.8CVSS8AI score0.01439EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/13 7:40 a.m.15 views

CVE-2024-22445

Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privilege...

7.2CVSS7.9AI score0.01439EPSS
Exploits0References1
CVE
CVE
added 2024/02/13 7:40 a.m.52 views

CVE-2024-22445

Dell PowerProtect Data Manager (PPDM) versions 19.15 and prior are affected by an OS command-injection vulnerability. The root cause, per PT-2024-2798, is the failure to neutralize special elements used in OS commands, enabling a remote, high-privileged attacker to run arbitrary OS commands on th...

7.2CVSS7.2AI score0.01439EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/02/13 7:35 a.m.53 views

CVE-2024-22454

Dell PowerProtect Data Manager (version 19.15 and earlier) contains a weak password recovery mechanism that allows a remote unauthenticated attacker to retrieve a reset password token and change the password, leading to unauthorized access with the compromised account’s privileges. The issue affe...

8.8CVSS8.8AI score0.0056EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/02/13 12:0 a.m.6 views

Dell PowerProtect Data Manager 授权问题漏洞

Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.15 and earlier, whic...

8.8CVSS6.9AI score0.0056EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/13 12:0 a.m.4 views

PT-2024-2581 · Dell · Dell Powerprotect Data Manager

Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager version 19.15 Description: The issue is related to an XML External Entity Injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to information disclosur...

6.8CVSS8AI score0.00565EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/02/13 12:0 a.m.5 views

Dell PowerProtect Data Manager 操作系统命令注入漏洞

Dell PowerProtect Data Manager PPDM is a set of data protection solutions from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An operating system command injection vulnerability exists in Dell PowerProtect Data Manager version 19.15 an...

7.2CVSS7.4AI score0.01439EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/13 12:0 a.m.4 views

PT-2024-2798 · Dell · Dell Powerprotect Data Manager

Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager versions 19.15 and prior Description: The issue is an OS command injection vulnerability that could allow a remote high privileged attacker to execute arbitrary OS commands on the application's underlying OS wit...

9CVSS7.2AI score0.01439EPSS
Exploits0References5
OSV
OSV
added 2023/12/04 11:15 p.m.2 views

CVE-2023-40081

In loadMediaDataInBgForResumption of MediaDataManager.kt, there is a possible way to view another user's images due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6AI score0.00117EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.5 views

PT-2023-9118 · Dell · Dell Powerprotect Data Manager Dm5500

Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager DM5500 version 5.14.0.0 Description: The issue exists due to the lack of neutralization of special elements used in an operating system command. A remote attacker with high privileges could potentially exploit...

8.3CVSS7AI score0.01589EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.6 views

PT-2023-8731 · Dell · Dell Powerprotect Data Manager Dm5500

Name of the Vulnerable Software and Affected Versions: Dell PowerProtect Data Manager DM5500 version 5.14.0.0 Description: The issue is caused by a stack-based buffer overflow in the appliance. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or...

9.8CVSS9.8AI score0.01047EPSS
Exploits0References10
CNVD
CNVD
added 2023/11/24 12:0 a.m.6 views

Dell PowerProtect Data Manager Authorization Issues Vulnerability (CNVD-2024-3761184)

Dell PowerProtect Data Manager PPDM is a data protection solution from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.14 and prior versions, which...

4CVSS6.5AI score0.00175EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.2 views

Dell PowerProtect Data Manager 安全漏洞

Dell PowerProtect Data Manager PPDM is a data protection solution from Dell USA. The product supports features such as data backup, virtual machine backup and database protection. An authorization issue vulnerability exists in Dell PowerProtect Data Manager version 19.14 and prior versions, which...

4CVSS6.5AI score0.00175EPSS
Exploits0References2
NVD
NVD
added 2023/11/21 9:15 a.m.19 views

CVE-2023-5776

The Post Meta Data Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.1. This is due to missing nonce validation on the pmdmwpajaxdeletemeta, pmdmwpdeleteusermeta, and pmdmwpdeleteusermeta functions. This makes it possible for...

8.8CVSS0.00292EPSS
Exploits0References4
Rows per page
Query Builder