Dell Smartfabric Os10 vulnerabilities
32 known vulnerabilities affecting dell/smartfabric_os10.
Total CVEs
32
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH20MEDIUM8LOW2
Vulnerabilities
Page 1 of 2
CVE-2023-32462P2CRITICALCVSS 9.8≥ 10.5.2.0, < 10.5.2.12≥ 10.5.3.0, < 10.5.3.8+5 more2024-02-15
CVE-2023-32462 [CRITICAL] CWE-20 CVE-2023-32462: Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection vulnerabil
Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection vulnerability when using remote user authentication. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands and possible system takeover. This is a critical vulnerability as it allows an
nvd
CVE-2025-46427P2HIGHCVSS 8.8fixed in 10.6.1.02025-11-12
CVE-2025-46427 [HIGH] CWE-77 CVE-2025-46427: Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Sp
Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
nvd
CVE-2025-46428P2HIGHCVSS 8.8fixed in 10.6.1.02025-11-12
CVE-2025-46428 [HIGH] CWE-77 CVE-2025-46428: Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of S
Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution.
nvd
CVE-2024-38486P2HIGHCVSS 8.8≥ 10.5.5.4, ≤ 10.5.5.10≥ 10.5.6.0, < 10.5.6.42024-09-06
CVE-2024-38486 [HIGH] CWE-77 CVE-2024-38486: Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x , contain(s) an I
Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x , contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
nvd
CVE-2024-39577P3HIGHCVSS 8.8≥ 10.5.3.0, < 10.5.3.11≥ 10.5.4.0, < 10.5.4.12+2 more2024-09-26
CVE-2024-39577 [HIGH] CWE-77 CVE-2024-39577: Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Imprope
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability leading to code execution.
nvd
CVE-2024-48013P3HIGHCVSS 8.8≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2024-48013 [HIGH] CWE-250 CVE-2024-48013: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Exe
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges.
nvd
CVE-2024-49559P3HIGHCVSS 8.8≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2024-49559 [HIGH] CWE-1393 CVE-2024-49559: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Use
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Use of Default Password vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.
nvd
CVE-2023-28078P3CRITICALCVSS 9.1≥ 10.5.2.0, < 10.5.2.12≥ 10.5.3.0, < 10.5.3.8+5 more2024-02-15
CVE-2023-28078 [CRITICAL] CWE-923 CVE-2023-28078: Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ when V
Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with zeroMQ when VLT is configured. A remote unauthenticated attacker could potentially exploit this vulnerability leading to information disclosure and a possible Denial of Service when a huge number of requests are sent to the switch. This is a high severity vulnerab
nvd
CVE-2026-22284P3HIGHCVSS 7.2fixed in 10.5.6.122026-02-17
CVE-2026-22284 [HIGH] CWE-77 CVE-2026-22284: Dell SmartFabric OS10 Software, versions prior to 10.5.6.12, contains an Improper Neutralization of
Dell SmartFabric OS10 Software, versions prior to 10.5.6.12, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
nvd
CVE-2024-39585P3HIGHCVSS 8.1≥ 10.5.5.4, ≤ 10.5.5.10≥ 10.5.6.0, < 10.5.6.42024-09-06
CVE-2024-39585 [HIGH] CWE-259 CVE-2024-39585: Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x, contain(s) an Us
Dell SmartFabric OS10 Software, version(s) 10.5.5.4 through 10.5.5.10 and 10.5.6.x, contain(s) an Use of Hard-coded Password vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Client-side request forgery and Information disclosure.
nvd
CVE-2024-49560P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.13≥ 10.5.5.0, < 10.5.5.12+1 more2024-11-12
CVE-2024-49560 [HIGH] CWE-77 CVE-2024-49560: Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a comm
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a command injection vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution.
nvd
CVE-2024-48831P3HIGHCVSS 8.4≥ 10.5.6.0, < 10.5.6.82025-03-17
CVE-2024-48831 [HIGH] CWE-259 CVE-2024-48831: Dell SmartFabric OS10 Software, version(s) 10.5.6.x, contain(s) a Use of Hard-coded Password vulnera
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, contain(s) a Use of Hard-coded Password vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access.
nvd
CVE-2025-22472P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2025-22472 [HIGH] CWE-77 CVE-2025-22472: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Imp
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to execution of commands with elevated privileges.
nvd
CVE-2024-48830P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2024-48830 [HIGH] CWE-77 CVE-2024-48830: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Imp
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution.
nvd
CVE-2024-49557P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.13≥ 10.5.5.0, < 10.5.5.12+1 more2024-11-12
CVE-2024-49557 [HIGH] CWE-77 CVE-2024-49557: Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Imp
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
nvd
CVE-2025-22473P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2025-22473 [HIGH] CWE-77 CVE-2025-22473: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Imp
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
nvd
CVE-2024-48017P3MEDIUMCVSS 6.5≥ 10.5.4.0, < 10.5.4.14≥ 10.5.5.0, < 10.5.5.13+2 more2025-03-17
CVE-2024-48017 [MEDIUM] CWE-77 CVE-2024-48017: Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Imp
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution.
nvd
CVE-2024-48837P3HIGHCVSS 7.8≥ 10.5.4.0, < 10.5.4.13≥ 10.5.5.0, < 10.5.5.12+1 more2024-11-12
CVE-2024-48837 [HIGH] CWE-250 CVE-2024-48837: Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Exe
Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution
nvd
CVE-2025-36609P3HIGHCVSS 7.8fixed in 10.6.0.52025-07-30
CVE-2025-36609 [HIGH] CWE-259 CVE-2025-36609: Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vu
Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
nvd
CVE-2024-37125P3HIGHCVSS 7.5≥ 10.5.3.0, < 10.5.3.11≥ 10.5.4.0, < 10.5.4.12+2 more2024-09-26
CVE-2024-37125 [HIGH] CWE-400 CVE-2024-37125: Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an Uncontro
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x,10.5.3.x, contains an Uncontrolled Resource Consumption vulnerability. A remote unauthenticated host could potentially exploit this vulnerability leading to a denial of service.
nvd
1 / 2Next →