cbcvebase.

Dell Powerprotect Dd vulnerabilities

25 known vulnerabilities affecting dell/powerprotect_dd.

Total CVEs
25
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH10MEDIUM13LOW2

Vulnerabilities

Page 2 of 2
CVE-2024-29173P4MEDIUMCVSS 4.9≥ 7.0, ≤ 7.13≥ N/A, < 2.7.7+1 more2024-06-26
CVE-2024-29173 [MEDIUM] CWE-918 CVE-2024-29173: Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Ser Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Server-Side Request Forgery (SSRF) vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to disclosure of information on the application or remote client.
nvd
CVE-2024-29174P4MEDIUMCVSS 4.4≥ 7.0, ≤ 7.13≥ 7.8, ≤ 7.132024-06-26
CVE-2024-29174 [MEDIUM] CWE-89 CVE-2024-29174: Dell Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.30, LTS 7.10.1.20 contain an SQL Injection v Dell Data Domain, versions prior to 7.13.0.0, LTS 7.7.5.30, LTS 7.10.1.20 contain an SQL Injection vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to the execution of certain SQL commands on the application's backend database causing unauthorized access to application data.
nvd
CVE-2024-28973P4MEDIUMCVSS 4.8≥ 7.0, ≤ 7.13≥ N/A, < 2.7.7+1 more2024-06-26
CVE-2024-28973 [MEDIUM] CWE-79 CVE-2024-28973: Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Sto Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a Stored Cross-Site Scripting Vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the storage of malicious HTML or JavaScript codes in a trusted application data store. When a high privileged victim user
nvd
CVE-2024-37141P4LOWCVSS 3.5≥ 7.0, ≤ 7.13≥ N/A, < 2.7.7+2 more2024-06-26
CVE-2024-37141 [LOW] CWE-601 CVE-2024-37141: Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an op Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an open redirect vulnerability. A remote low privileged attacker could potentially exploit this vulnerability, leading to information disclosure.
nvd
CVE-2024-29177P4LOWCVSS 2.7≥ 7.0, ≤ 7.13≥ N/A, < 2.7.7+2 more2024-06-26
CVE-2024-29177 [LOW] CWE-532 CVE-2024-29177: Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a dis Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a disclosure of temporary sensitive information vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to the reuse of disclosed information to gain unauthorized access to the application report.
nvd
Dell Powerprotect Dd vulnerabilities | cvebase