Dell Vasa
By the Year
In 2023 there have been 0 vulnerabilities in Dell Vasa . Last year Vasa had 3 security vulnerabilities published. Right now, Vasa is on track to have less security vulnerabilities in 2023 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 3 | 7.93 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Vasa vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Dell Vasa Security Vulnerabilities
Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability
CVE-2022-31233
8 - High
- August 31, 2022
Unisphere for PowerMax versions before 9.2.3.15 contain a privilege escalation vulnerability. An adjacent malicious user may potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to.
Incorrect Resource Transfer Between Spheres
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts
CVE-2021-36339
7.8 - High
- January 21, 2022
The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.
Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability
CVE-2021-36338
8 - High
- January 21, 2022
Unisphere for PowerMax versions prior to 9.2.2.2 contains a privilege escalation vulnerability. An adjacent malicious user could potentially exploit this vulnerability to escalate their privileges and access functionalities they do not have access to. CVE-2022-31233 addresses the partial fix in CVE-2021-36338.
Reliance on Cookies without Validation and Integrity Checking
