RSS   Vulnerabilities for
'Openmanage server administrator'
   RSS

2021-03-02
 
CVE-2021-21514

CWE-22
 

 
Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view arbitrary files on the target system by sending a specially crafted URL request.

 
 
CVE-2021-21513

CWE-287
 

 
Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on the affected system.

 
2016-04-12
 
CVE-2016-4004

 

 
Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.

 
2014-04-10
 
CVE-2013-0740

CWE-20
 

 
Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer.

 
2013-01-25
 
CVE-2012-6272

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/index_main.htm in (1) help/sm/en/Output/wwhelp/wwhimpl/js/, (2) help/sm/es/Output/wwhelp/wwhimpl/js/, (3) help/sm/ja/Output/wwhelp/wwhimpl/js/, (4) help/sm/de/Output/wwhelp/wwhimpl/js/, (5) help/sm/fr/Output/wwhelp/wwhimpl/js/, (6) help/sm/zh/Output/wwhelp/wwhimpl/js/, (7) help/hip/en/msgguide/wwhelp/wwhimpl/js/, or (8) help/hip/en/msgguide/wwhelp/wwhimpl/common/.

 
2012-11-15
 
CVE-2012-4955

 

 
Cross-site scripting (XSS) vulnerability in Dell OpenManage Server Administrator (OMSA) before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: DELL 195 Products
Openmanage
Truemobile 1300 wlan mini-pci card util trayapplet
Truemobile 2300 wireless broadband router
3000cn
3010cn
3100cn
3110cn
5100cn
5110cn
Asset manager
Openmanage cd
Remote access card
BIOS
Dellsystemlite.scanner activex control
Kace k2000 systems deployment appliance
Powervault ml6000 firmware
Powervault ml6000
Powervault ml6010
Powervault ml6020
Powervault ml6030
Wyse device manager
Sonicwall scrutinizer
Sonicwall scrutinizer with flow analytics module
Crowbar
Sonicwall viewpoint
Openmanage server administrator
Powerconnect 6248p
Idrac6 bmc
Idrac6 firmware
Latitude d
Latitude e
Latitude xt2
Latitude z600
Precision m
Latitude d530
Latitude d531
Latitude d630
Latitude d631
Latitude d830
Latitude e4200
Latitude e4300
Latitude e5400
Latitude e5500
Latitude e6400
Latitude e6400 atg
Latitude e6400 atg xfr
Latitude e6500
Precision m2300
Precision m2400
Precision m4300
Precision m4400
Precision m6300
Precision m6400
Precision m6500
Idrac6 monolithic
Idrac7
Idrac7 firmware
Quest one password manager
Unisphere
Sonicwall analyzer
Sonicwall global management system
Sonicwall universal management appliance e5000 software
Sonicwall universal management appliance e5000
Powerconnect 3348
Powerconnect 3524p
Powerconnect 5324
Kace k1000 systems management appliance software
Kace k1000 systems management virtual appliance
Kace k1000 systems management appliance
Kace k1100s systems management appliance
Kace k1200s systems management appliance
Sonicwall network security appliance 2400
Sonicwall email security
Sonicwall umaem5000
Equallogic ps4000 firmware
Idrac6 modular
Sonicwall sonicos
Sonicwall secure remote access firmware
System update
Sonicwall umaem5000 firmware
Netvault backup
Sonicwall netextender firmware
Sonicwall totalsecure tz 100 firmware
Pre-boot authentication driver
Sonicwall uma em5000 firmware
Secureworks
Km714 firmware
Km632 firmware
Rsa via lifecycle and governance
Solutions enabler
Idrac8 firmware
Sonicwall secure remote access server
Integrated remote access controller firmware
Rsa identity governance and lifecycle
Storage manager 2016
Emc supportassist enterprise
Emc vmax embedded management
Emc isilon
Emc isilon onefs
Emc networker
See all Products for Vendor DELL


Copyright 2024, cxsecurity.com

 

Back to Top