Vulnerability Details CVE-2021-36302
All Dell EMC Integrated System for Microsoft Azure Stack Hub versions contain a privilege escalation vulnerability. A remote malicious user with standard level JEA credentials may potentially exploit this vulnerability to elevate privileges and take over the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.7%
CVSS Severity
CVSS v3 Score 9.9
CVSS v2 Score 9.0
References
- https://www.dell.com/support/kbdoc/en-us/000191165/dsa-2021-178-dell-emc-integrated-solution-for-microsoft-azure-stack-hub-security-update-for-a-just-enough-administration-jea-vulnerability
- https://www.dell.com/support/kbdoc/en-us/000191165/dsa-2021-178-dell-emc-integrated-solution-for-microsoft-azure-stack-hub-security-update-for-a-just-enough-administration-jea-vulnerability
Products affected by CVE-2021-36302
-
cpe:2.3:h:dell:emc_integrated_system_for_microsoft_azure_stack_hub:-
-
cpe:2.3:o:dell:emc_integrated_system_for_microsoft_azure_stack_hub_firmware:1906
-
cpe:2.3:o:dell:emc_integrated_system_for_microsoft_azure_stack_hub_firmware:2011
-
cpe:2.3:o:dell:emc_integrated_system_for_microsoft_azure_stack_hub_firmware:2108
-
cpe:2.3:o:dell:emc_integrated_system_for_microsoft_azure_stack_hub_firmware:2204