Dell Smartfabric Storage Software
By the Year
In 2024 there have been 0 vulnerabilities in Dell Smartfabric Storage Software . Last year Smartfabric Storage Software had 8 security vulnerabilities published. Right now, Smartfabric Storage Software is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 8 | 7.68 |
| 2022 | 1 | 9.80 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Smartfabric Storage Software vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Dell Smartfabric Storage Software Security Vulnerabilities
Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability
CVE-2023-32485
9.8 - Critical
- October 05, 2023
Dell SmartFabric Storage Software version 1.3 and lower contain an improper input validation vulnerability. A remote unauthenticated attacker may exploit this vulnerability and escalate privileges up to the highest administration level. This is a critical severity vulnerability affecting user authentication. Dell recommends customers to upgrade at the earliest opportunity.
Improper Input Validation
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the more command
CVE-2023-4401
8.8 - High
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the more command. A local or remote authenticated attacker could potentially exploit this vulnerability, leading to the ability to gain root-level access.
Shell injection
Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration
CVE-2023-43073
6.5 - Medium
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains an Improper Input Validation vulnerability in RADIUS configuration. An authenticated remote attacker could potentially exploit this vulnerability, leading to gaining unauthorized access to data.
Improper Input Validation
Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI
CVE-2023-43072
7.8 - High
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains an improper access control vulnerability in the CLI. A local possibly unauthenticated attacker could potentially exploit this vulnerability, leading to ability to execute arbritrary shell commands.
Authorization
Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection
CVE-2023-43071
5.4 - Medium
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains possible vulnerabilities for HTML injection or CVS formula injection which might escalate to cross-site scripting attacks in HTML pages in the GUI. A remote authenticated attacker could potentially exploit these issues, leading to various injection type attacks.
CSV Injection
Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface
CVE-2023-43070
6.5 - Medium
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains a Path Traversal Vulnerability in the HTTP interface. A remote authenticated attacker could potentially exploit this vulnerability, leading to modify or write arbitrary files to arbitrary locations in the license container.
Directory traversal
Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI
CVE-2023-43069
7.8 - High
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. An authenticated local attacker could potentially exploit this vulnerability, leading to possible injection of parameters to curl or docker.
Shell injection
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH
CVE-2023-43068
8.8 - High
- October 05, 2023
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. An authenticated remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands.
Shell injection
SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability
CVE-2022-31232
9.8 - Critical
- August 30, 2022
SmartFabric storage software version 1.0.0 contains a Command-Injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access and perform actions on the affected system.
Shell injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Dell Smartfabric Storage Software or by Dell? Click the Watch button to subscribe.
