CVE-2021-36289

CWE-532Log File Information Exposure3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 85.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Dell VNX Control StationDell EMC Unity Operating Environment
Timeline
PublishedJan 25
Latest updateJan 27

Description

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain a sensitive information disclosure vulnerability. A local malicious user may exploit this vulnerability to read sensitive information and use it.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5dell/vnx_control_stationunspecifiedTBD

🔴Vulnerability Details

2
GHSA
GHSA-m8p9-v77c-rq98: Dell VNX2 OE for File versions 82022-01-27
CVEList
CVE-2021-36289: Dell VNX2 OE for File versions 82022-01-25
CVE-2021-36289 (HIGH CVSS 7.8) | Dell VNX2 OE for File versions 8.1. | cvebase.io