Openmanage Server Administrator Security Vulnerabilities and Issues — Openmanage Server Administrator CVE List

Lucene search

DellOpenmanage Server Administrator

10 matches found

CVE•added 2024/12/09 5:15 p.m.•57 views

CVE-2024-45760

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper access control vulnerability. A remote low privileged user could potentially exploit this vulnerability via the HTTP GET method leading to unauthorized action with elevated privileges.

8.8CVSS7AI score0.00082EPSS

CVE•added 2021/03/02 4:15 p.m.•53 views

CVE-2021-21513

Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on...

9.8CVSS9.7AI score0.00505EPSS

CVE•added 2024/12/09 5:15 p.m.•50 views

CVE-2024-45761

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains an improper input validation vulnerability. A remote low-privileged malicious user could potentially exploit this vulnerability to load any web plugins or Java class leading to the possibility of altering the behavior of ce...

8.1CVSS7.1AI score0.00179EPSS

CVE•added 2014/04/10 8:29 p.m.•44 views

CVE-2013-0740

Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer.

5.8CVSS6.9AI score0.00253EPSS

CVE•added 2013/01/25 12:0 p.m.•43 views

CVE-2012-6272

Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/index_main.htm in (1) help/sm/en/Output/wwhelp/wwhimpl/js/, (2) help/sm/es/Output/w...

4.3CVSS5.8AI score0.01112EPSS

CVE•added 2016/04/12 5:59 p.m.•40 views

CVE-2016-4004

Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.

4.9CVSS4.8AI score0.15508EPSS

CVE•added 2012/11/15 11:58 a.m.•39 views

CVE-2012-4955

Cross-site scripting (XSS) vulnerability in Dell OpenManage Server Administrator (OMSA) before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00638EPSS

CVE•added 2024/06/11 2:15 a.m.•39 views

CVE-2024-37130

Dell OpenManage Server Administrator, versions 11.0.1.0 and prior, contains a Local Privilege Escalation vulnerability via XSL Hijacking. A local low-privileged malicious user could potentially exploit this vulnerability and escalate their privilege to the admin user and gain full control of the ma...

7.8CVSS7.3AI score0.00103EPSS

CVE•added 2023/02/01 6:15 a.m.•36 views

CVE-2022-34396

Dell OpenManage Server Administrator (OMSA) version 10.3.0.0 and earlier contains a DLL Injection Vulnerability. A local low privileged authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary executable on the operating system with elevated privile...

7.8CVSS7.5AI score0.00037EPSS

CVE•added 2021/03/02 4:15 p.m.•29 views

CVE-2021-21514

Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view arbitrary files on the target system by sending a specially crafted URL request.

4.9CVSS5.2AI score0.12848EPSS