Cloudlink@* Security Vulnerabilities and Issues — Cloudlink@* CVE List

Lucene search

DellCloudlink*

3 matches found

CVE•added 2022/05/26 4:15 p.m.•48 views

CVE-2022-24414

Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in reverse proxies and server logs. Attackers may potentially use these tokens to access CloudLink server. Tokens should not be used in request URL to avoid such attacks...

7.6CVSS6.4AI score0.00327EPSS

CVE•added 2022/09/01 7:15 p.m.•40 views

CVE-2022-34380

Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high privileged local attacker may potentially exploit this vulnerability leading to authentication bypass and access the CloudLink system console. This is critical sev...

9.3CVSS8.2AI score0.00009EPSS

CVE•added 2022/09/01 7:15 p.m.•39 views

CVE-2022-34379

Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. A remote attacker, with the knowledge of the active directory usernames, could potentially exploit this vulnerability to gain unauthorized access to the system.

9.8CVSS9.4AI score0.00189EPSS