CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-21506

PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and ISI_PRIV_LOGIN_PAPI privileges could potentially exploit this vulnerability, leading to potential privileges escalation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

https://www.dell.com/support/kbdoc/000183717
https://www.dell.com/support/kbdoc/000183717

Products affected by CVE-2021-21506

Dell » Emc Powerscale Onefs » Version: 8.1.2

cpe:2.3:o:dell:emc_powerscale_onefs:8.1.2
Dell » Emc Powerscale Onefs » Version: 8.2.2

cpe:2.3:o:dell:emc_powerscale_onefs:8.2.2
Dell » Emc Powerscale Onefs » Version: 9.1.0

cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21506

Products

Pricing

Contact Us