Produkt Openmanage server administrator (...) - CVEMAP.ORG

Podatności dla
'Openmanage server administrator'

2021-03-02

CVE-2021-21514

CWE-22

Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view arbitrary files on the target system by sending a specially crafted URL request.

CVE-2021-21513

CWE-287

Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on the affected system.

2016-04-12

CVE-2016-4004

Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.

2014-04-10

CVE-2013-0740

CWE-20

Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer.

2013-01-25

CVE-2012-6272

CWE-79

Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/index_main.htm in (1) help/sm/en/Output/wwhelp/wwhimpl/js/, (2) help/sm/es/Output/wwhelp/wwhimpl/js/, (3) help/sm/ja/Output/wwhelp/wwhimpl/js/, (4) help/sm/de/Output/wwhelp/wwhimpl/js/, (5) help/sm/fr/Output/wwhelp/wwhimpl/js/, (6) help/sm/zh/Output/wwhelp/wwhimpl/js/, (7) help/hip/en/msgguide/wwhelp/wwhimpl/js/, or (8) help/hip/en/msgguide/wwhelp/wwhimpl/common/.

2012-11-15

CVE-2012-4955

Cross-site scripting (XSS) vulnerability in Dell OpenManage Server Administrator (OMSA) before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

>>> Vendor: DELL 195 Produkty

Truemobile 1300 wlan mini-pci card util trayapplet

Truemobile 2300 wireless broadband router

Remote access card

Dellsystemlite.scanner activex control

Kace k2000 systems deployment appliance

Powervault ml6000 firmware

Powervault ml6000

Powervault ml6010

Powervault ml6020

Powervault ml6030

Wyse device manager

Sonicwall scrutinizer

Sonicwall scrutinizer with flow analytics module

Sonicwall viewpoint

Openmanage server administrator

Powerconnect 6248p

Idrac6 firmware

Latitude e6400 atg

Latitude e6400 atg xfr

Precision m2300

Precision m2400

Precision m4300

Precision m4400

Precision m6300

Precision m6400

Precision m6500

Idrac6 monolithic

Idrac7 firmware

Quest one password manager

Sonicwall analyzer

Sonicwall global management system

Sonicwall universal management appliance e5000 software

Sonicwall universal management appliance e5000

Powerconnect 3348

Powerconnect 3524p

Powerconnect 5324

Kace k1000 systems management appliance software

Kace k1000 systems management virtual appliance

Kace k1000 systems management appliance

Kace k1100s systems management appliance

Kace k1200s systems management appliance

Sonicwall network security appliance 2400

Sonicwall email security

Sonicwall umaem5000

Equallogic ps4000 firmware

Sonicwall sonicos

Sonicwall secure remote access firmware

Sonicwall umaem5000 firmware

Netvault backup

Sonicwall netextender firmware

Sonicwall totalsecure tz 100 firmware

Pre-boot authentication driver

Sonicwall uma em5000 firmware

Idrac8 firmware

Sonicwall secure remote access server

Integrated remote access controller firmware

Storage manager 2016

Emc supportassist enterprise

Emc vmax embedded management

Emc isilon onefs

Emc integrated data protection appliance

Emc vnx1 operating environment

Zobacz wszystkie produkty dla producenta DELL

Copyright 2024, cxsecurity.com