Vulnerabilities (CVE)

Filtered by vendor Dell Subscribe
Filtered by product Geodrive
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-33937 1 Dell 1 Geodrive 2024-11-21 N/A 7.1 HIGH
Dell GeoDrive, Versions 1.0 - 2.2, contain a Path Traversal Vulnerability in the reporting function. A local, low privileged attacker could potentially exploit this vulnerability, to gain unauthorized delete access to the files stored on the server filesystem, with the privileges of the GeoDrive service: NT AUTHORITY\SYSTEM.
CVE-2022-33922 1 Dell 1 Geodrive 2024-11-21 N/A 7.0 HIGH
Dell GeoDrive, versions prior to 2.2, contains Insecure File and Folder Permissions vulnerabilities. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context. Dell recommends customers to upgrade at the earliest opportunity.
CVE-2022-33921 1 Dell 1 Geodrive 2024-11-21 N/A 7.0 HIGH
Dell GeoDrive, versions prior to 2.2, contains Multiple DLL Hijacking Vulnerabilities. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context.
CVE-2022-33920 1 Dell 1 Geodrive 2024-11-21 N/A 7.8 HIGH
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to the execution of arbitrary code in the SYSTEM security context.
CVE-2022-33919 1 Dell 1 Geodrive 2024-11-21 N/A 7.8 HIGH
Dell GeoDrive, versions 2.1 - 2.2, contains an information disclosure vulnerability in GUI. An authenticated non-admin user could potentially exploit this vulnerability and view sensitive information.
CVE-2022-33918 1 Dell 1 Geodrive 2024-11-21 N/A 5.5 MEDIUM
Dell GeoDrive, Versions 2.1 - 2.2, contains an information disclosure vulnerability. An authenticated non-admin user could potentially exploit this vulnerability and gain access to sensitive information.