Every CVE whose affected-product data names Dell Cloudlink, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2022-34379 — CVSS 9.4 (critical): Dell EMC CloudLink 7.1.2 and all prior versions contain an Authentication Bypass Vulnerability. A remote attacker, with the knowledge of…
CVE-2022-34380 — CVSS 9.3 (critical): Dell CloudLink 7.1.3 and all earlier versions contain an Authentication Bypass Using an Alternate Path or Channel Vulnerability. A high…
CVE-2025-45378 — CVSS 9.1 (critical): Dell CloudLink, versions 8.0 through 8.1.2, contain vulnerability on restricted shell. A Privileged user with known password can break into…
CVE-2021-36313 — CVSS 9.1 (critical): Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may…
CVE-2021-36312 — CVSS 9.1 (critical): Dell EMC CloudLink 7.1 and all prior versions contain a Hard-coded Password Vulnerability. A remote high privileged attacker, with the…
CVE-2025-46364 — CVSS 9.1 (critical): Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user with known password can run CLI Escape…
CVE-2025-30479 — CVSS 8.4 (high): Dell CloudLink, versions prior to 8.2, contain a vulnerability where a privileged user with known password can run command injection to…
CVE-2025-45379 — CVSS 8.4 (high): Dell CloudLink, versions prior to 8.2, contain a vulnerability where a privileged user with known password can run command injection from…
CVE-2022-24414 — CVSS 7.6 (high): Dell EMC CloudLink 7.1.3 and all earlier versions, Auth Token is exposed in GET requests. These request parameters can get logged in…
CVE-2025-46424 — CVSS 6.7 (medium): Dell CloudLink, versions prior to 8.2, contain use of a Cryptographic Primitive with a Risky Implementation vulnerability. A high…
CVE-2025-46366 — CVSS 6.7 (medium): Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user may exploit and gain parallel privilege escalation…
CVE-2024-38482 — CVSS 6.6 (medium): CloudLink, versions 7.1.x and 8.x, contain an Improper check or handling of Exceptional Conditions Vulnerability in Cluster Component. A…
CVE-2023-28076 — CVSS 5.9 (medium): CloudLink 7.1.2 and all prior versions contain a broken or risky cryptographic algorithm vulnerability. An unauthenticated remote attacker…
CVE-2025-26484 — CVSS 5.5 (medium): Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high…
CVE-2025-46365 — CVSS 5.3 (medium): Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploited by an Authenticated attacker to…
CVE-2024-37137 — CVSS 3.8 (low): Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local…