CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-21562

Dell EMC PowerScale OneFS contains an untrusted search path vulnerability. This vulnerability allows a user with (ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE) and (ISI_PRIV_SYS_UPGRADE or ISI_PRIV_AUDIT) to provide an untrusted path which can lead to run resources that are not under the application’s direct control.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.8%

CVSS Severity

CVSS v3 Score 4.4

CVSS v2 Score 2.1

References

https://www.dell.com/support/kbdoc/000188148
https://www.dell.com/support/kbdoc/000188148

Products affected by CVE-2021-21562

Dell » Emc Powerscale Onefs » Version: 8.1.2

cpe:2.3:o:dell:emc_powerscale_onefs:8.1.2
Dell » Emc Powerscale Onefs » Version: 8.1.3

cpe:2.3:o:dell:emc_powerscale_onefs:8.1.3
Dell » Emc Powerscale Onefs » Version: 9.0.0.0

cpe:2.3:o:dell:emc_powerscale_onefs:9.0.0.0
Dell » Emc Powerscale Onefs » Version: 9.1.0.0

cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21562

Products

Pricing

Contact Us