Hybrid Client Security Vulnerabilities and Issues — Hybrid Client CVE List

Lucene search

DellHybrid Client

10 matches found

CVE•added 2021/04/30 6:15 p.m.•70 views

CVE-2021-21536

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to register the client to a server in order to view sensitive information.

6.2CVSS5.2AI score0.00057EPSS

CVE•added 2021/04/30 6:15 p.m.•64 views

CVE-2021-21535

Dell Hybrid Client versions prior to 1.5 contain a missing authentication for a critical function vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain root level access to the system.

7.8CVSS7.8AI score0.00034EPSS

CVE•added 2021/04/30 6:15 p.m.•61 views

CVE-2021-21537

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to view and exfiltrate sensitive information on the system.

6.2CVSS5.3AI score0.00057EPSS

CVE•added 2021/04/30 6:15 p.m.•57 views

CVE-2021-21534

Dell Hybrid Client versions prior to 1.5 contain an information exposure vulnerability. A local unauthenticated attacker may exploit this vulnerability in order to gain access to sensitive information via the local API.

4CVSS4.1AI score0.00051EPSS

CVE•added 2022/10/11 5:15 p.m.•43 views

CVE-2022-34432

Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders.

8.2CVSS8.1AI score0.00143EPSS

CVE•added 2022/10/11 5:15 p.m.•42 views

CVE-2022-34430

Dell Hybrid Client below 1.8 version contains a Zip Bomb Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.

7.5CVSS7.4AI score0.00118EPSS

CVE•added 2022/10/11 5:15 p.m.•39 views

CVE-2022-34431

Dell Hybrid Client below 1.8 version contains a guest user profile corruption vulnerability. A WMS privilege attacker could potentially exploit this vulnerability, leading to DHC system not being accessible.

6.5CVSS6.6AI score0.00092EPSS

CVE•added 2022/09/30 8:15 p.m.•37 views

CVE-2022-34428

Dell Hybrid Client prior to version 1.8 contains a Regular Expression Denial of Service Vulnerability in the UI. An adversary with WMS group admin access could potentially exploit this vulnerability, leading to temporary denial-of-service.

5CVSS3.9AI score0.00082EPSS

CVE•added 2023/07/20 2:15 p.m.•37 views

CVE-2023-32476

Dell Hybrid Client version 2.0 contains a Sensitive Data Exposure vulnerability. An unauthenticated malicious user on the device can access hard coded secrets in javascript files.

6.4CVSS5.5AI score0.00041EPSS

CVE•added 2022/09/30 8:15 p.m.•34 views

CVE-2022-34429

Dell Hybrid Client below 1.8 version contains a Zip Slip Vulnerability in UI. A guest privilege attacker could potentially exploit this vulnerability, leading to system files modification.

7.1CVSS6.8AI score0.0005EPSS