Networking Os10 Dell Networking Os10

Do you want an email whenever new security vulnerabilities are reported in Dell Networking Os10?

By the Year

In 2021 there have been 5 vulnerabilities in Dell Networking Os10 with an average score of 7.3 out of ten. Networking Os10 did not have any published security vulnerabilities last year. That is, 5 more vulnerabilities have already been reported in 2021 as compared to last year.

Year Vulnerabilities Average Score
2021 5 7.32
2020 0 0.00
2019 2 7.60
2018 0 0.00

It may take a day or so for new Networking Os10 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Dell Networking Os10 Security Vulnerabilities

Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability

CVE-2021-36319 3.3 - Low - November 20, 2021

Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. A low privileged authenticated malicious user can gain access to SNMP authentication failure messages.

Exposure of Resource to Wrong Sphere

Dell Networking OS10

CVE-2021-36310 4.9 - Medium - November 20, 2021

Dell Networking OS10, versions 10.4.3.x, 10.5.0.x, 10.5.1.x & 10.5.2.x, contain an uncontrolled resource consumption flaw in its API service. A high-privileged API user may potentially exploit this vulnerability, leading to a denial of service.

Resource Exhaustion

Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability

CVE-2021-36308 9.8 - Critical - November 20, 2021

Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to gain access and perform actions on the affected system.

Authentication Bypass Using an Alternate Path or Channel

Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege escalation vulnerability

CVE-2021-36307 8.8 - High - November 20, 2021

Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege escalation vulnerability. A malicious low privileged user with specific access to the API could potentially exploit this vulnerability to gain admin privileges on the affected system.

Improper Privilege Management

Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains an authentication bypass vulnerability

CVE-2021-36306 9.8 - Critical - November 20, 2021

Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to gain access and perform actions on the affected system.

authentification

Dell OS10 versions prior to 10.4.2.1 contain a vulnerability caused by lack of proper input validation on the command-line interface (CLI).

CVE-2018-15778 7.8 - High - February 04, 2019

Dell OS10 versions prior to 10.4.2.1 contain a vulnerability caused by lack of proper input validation on the command-line interface (CLI).

Improper Input Validation

Dell Networking OS10 versions prior to 10.4.3.0 contain a vulnerability in the Phone Home feature

CVE-2018-15784 7.4 - High - January 18, 2019

Dell Networking OS10 versions prior to 10.4.3.0 contain a vulnerability in the Phone Home feature which does not properly validate the server's certificate authority during TLS handshake. Use of an invalid or malicious certificate could potentially allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack.

Improper Certificate Validation

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Dell Networking Os10 or by Dell? Click the Watch button to subscribe.

Dell
Vendor

subscribe