Xtremio Management Server Dell Xtremio Management Server

Do you want an email whenever new security vulnerabilities are reported in Dell Xtremio Management Server?

By the Year

In 2022 there have been 0 vulnerabilities in Dell Xtremio Management Server . Xtremio Management Server did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2022 0 0.00
2021 0 0.00
2020 3 7.47
2019 0 0.00
2018 0 0.00

It may take a day or so for new Xtremio Management Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Dell Xtremio Management Server Security Vulnerabilities

Dell EMC XtremIO XMS versions prior to 6.3.0 contain an information disclosure vulnerability where OS users passwords are logged in local files

CVE-2019-18576 6.7 - Medium - March 13, 2020

Dell EMC XtremIO XMS versions prior to 6.3.0 contain an information disclosure vulnerability where OS users passwords are logged in local files. Malicious local users with access to the log files may use the exposed passwords to gain access to XtremIO with the privileges of the compromised user.

Insertion of Sensitive Information into Log File

Dell EMC XtremIO XMS versions prior to 6.3.0 contain an incorrect permission assignment vulnerability

CVE-2019-18577 6.7 - Medium - March 13, 2020

Dell EMC XtremIO XMS versions prior to 6.3.0 contain an incorrect permission assignment vulnerability. A malicious local user with XtremIO xinstall privileges may exploit this vulnerability to gain root access.

Incorrect Permission Assignment for Critical Resource

Dell EMC XtremIO XMS versions prior to 6.3.0 contain a stored cross-site scripting vulnerability

CVE-2019-18578 9 - Critical - March 13, 2020

Dell EMC XtremIO XMS versions prior to 6.3.0 contain a stored cross-site scripting vulnerability. A low-privileged malicious remote user of XtremIO may exploit this vulnerability to store malicious HTML or JavaScript code in application fields. When victim users access the injected page through their browsers, the malicious code may be executed by the web browser in the context of the vulnerable web application.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Dell Xtremio Management Server or by Dell? Click the Watch button to subscribe.

Dell
Vendor

subscribe