Dell Enterprise Sonic Distribution — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Enterprise Sonic Distribution, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-32484 — CVSS 9.8 (critical): Dell Networking Switches running Enterprise SONiC versions 4.1.0, 4.0.5, 3.5.4 and below contains an improper input validation…
CVE-2024-45763 — CVSS 9.1 (critical): Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS…
CVE-2024-45765 — CVSS 9.1 (critical): Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS…
CVE-2024-45764 — CVSS 9.0 (critical): Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated…
CVE-2025-23374 — CVSS 8.0 (high): Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3, contain(s) an Insertion of Sensitive Information…
CVE-2022-34425 — CVSS 7.5 (high): Dell Enterprise SONiC OS, 4.0.0, 4.0.1, contain a cryptographic key vulnerability in SSH. An unauthenticated remote attacker could…
CVE-2023-24574 — CVSS 7.5 (high): Dell Enterprise SONiC OS, 3.5.3, 4.0.0, 4.0.1, 4.0.2, contains an "Uncontrolled Resource Consumption vulnerability" in authentication…