Filtered by vendor Dell Subscriptions
Filtered by product Emc Vnx2 Firmware Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2019-3704 1 Dell 2 Emc Vnx2, Emc Vnx2 Firmware 2024-11-21 N/A
VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. Due to inadequate restriction configured in sudores, a local authenticated malicious user could potentially execute arbitrary OS commands as root by exploiting this vulnerability.
CVE-2017-14383 1 Dell 4 Emc Vnx1, Emc Vnx1 Firmware, Emc Vnx2 and 1 more 2024-11-21 N/A
In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impacted by a reflected cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary HTML code in the user's browser session in the context of the affected web application.