CVE-2021-21506
published 2021-03-08CVE-2021-21506: PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and ISI_PRIV_LOGIN_PAPI privileges could potentially exploit this vulnerability, leading to potential privileges escalation.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_powerscale_onefs | — | — |
| dell | emc_powerscale_onefs | — | — |
| dell | emc_powerscale_onefs | — | — |
| dell | powerscale_onefs | >= unspecified < 8.1.2, 8.2.2,9.1.0.x,EMPIRE (9.2.0), GOTHAM | 8.1.2, 8.2.2,9.1.0.x,EMPIRE (9.2.0), GOTHAM |