Vulnerability Details CVE-2021-36294
Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability. A remote unauthenticated attacker may exploit this vulnerability by forging a cookie to login as any user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2021-36294
-
cpe:2.3:a:dell:emc_unity_operating_environment:-
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.0.0.7329527
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.0.1.8194551
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.0.1.8320161
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.0.1.8404134
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.0.2.8627717
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.1.0.8940590
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.1.0.8959731
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.1.0.9058043
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.1.1.9138882
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.1.2.9257522
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.2.0.9392909
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.2.0.9476662
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.2.1.9535982
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.2.2.9632250
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.2.3.9670635
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.3.0.1522077968
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.3.1.1525703027
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.4.0.1534750794
-
cpe:2.3:a:dell:emc_unity_operating_environment:4.4.1.1539309879
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.0.0.0.5.116
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.0.2.0.5.009
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.0.4.0.5.012
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.1.0.0.5.394
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.1.2.0.5.007
-
cpe:2.3:a:dell:emc_unity_operating_environment:5.33.021.5.303
-
cpe:2.3:a:dell:emc_unity_operating_environment:8.1.21.266
-
cpe:2.3:h:dell:vnx5200:-
-
cpe:2.3:h:dell:vnx5400:-
-
cpe:2.3:h:dell:vnx5600:-
-
cpe:2.3:h:dell:vnx5800:-
-
cpe:2.3:h:dell:vnx7600:-
-
cpe:2.3:h:dell:vnx8000:-
-
cpe:2.3:h:dell:vnx_vg10:-
-
cpe:2.3:h:dell:vnx_vg50:-