Vulnerability Details CVE-2021-36306
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to gain access and perform actions on the affected system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.4%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 9.3
References
Products affected by CVE-2021-36306
-
cpe:2.3:o:dell:networking_os10:*
-
cpe:2.3:o:dell:networking_os10:10.3.2-r2
-
cpe:2.3:o:dell:networking_os10:10.4.0-r3s
-
cpe:2.3:o:dell:networking_os10:10.4.1.4
-
cpe:2.3:o:dell:networking_os10:10.4.2.1
-
cpe:2.3:o:dell:networking_os10:10.4.3.0
-
cpe:2.3:o:dell:networking_os10:10.5.2.0