Dell Xtremio Management Server — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Xtremio Management Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2019-18578 — CVSS 9.0 (critical): Dell EMC XtremIO XMS versions prior to 6.3.0 contain a stored cross-site scripting vulnerability. A low-privileged malicious remote user of…
CVE-2021-21549 — CVSS 8.8 (high): Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. A non-privileged attacker could…
CVE-2025-26332 — CVSS 8.8 (high): TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2, contain(s) an Insertion of Sensitive Information into Log File vulnerability…
CVE-2025-30105 — CVSS 8.8 (high): Dell XtremIO, version(s) 6.4.0-22, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker…
CVE-2022-31228 — CVSS 8.1 (high): Dell EMC XtremIO versions prior to X2 6.4.0-22 contain a bruteforce vulnerability. A remote unauthenticated attacker can potentially…
CVE-2019-18577 — CVSS 6.7 (medium): Dell EMC XtremIO XMS versions prior to 6.3.0 contain an incorrect permission assignment vulnerability. A malicious local user with XtremIO…
CVE-2019-18576 — CVSS 6.7 (medium): Dell EMC XtremIO XMS versions prior to 6.3.0 contain an information disclosure vulnerability where OS users’ passwords are logged in…