CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-43587

Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.9%

CVSS Severity

CVSS v3 Score 8.2

CVSS v2 Score 7.2

References

https://www.dell.com/support/kbdoc/en-us/000194083/dsa-2021-260
https://www.dell.com/support/kbdoc/en-us/000194083/dsa-2021-260

Products affected by CVE-2021-43587

Dell » Powerpath Management Appliance » Version: 2.6

cpe:2.3:a:dell:powerpath_management_appliance:2.6
Dell » Powerpath Management Appliance » Version: 3.0

cpe:2.3:a:dell:powerpath_management_appliance:3.0
Dell » Powerpath Management Appliance » Version: 3.1

cpe:2.3:a:dell:powerpath_management_appliance:3.1
Dell » Powerpath Management Appliance » Version: 3.2

cpe:2.3:a:dell:powerpath_management_appliance:3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43587

Products

Pricing

Contact Us