Lucene search

DellCVELIST:CVE-2021-21570

HistorySep 28, 2021 - 7:20 p.m.

CVE-2021-21570

2021-09-2819:20:21

CWE-78

dell

www.cve.org

dell networker

information disclosure

vulnerability

remote access

unauthorized access

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

30.0%

JSON

Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information.

CNA Affected

[
  {
    "product": "NetWorker",
    "vendor": "Dell",
    "versions": [
      {
        "status": "affected",
        "version": "18.x, 19.x"
      }
    ]
  }
]

References

www.dell.com/support/kbdoc/en-us/000188311/dsa-2021-124-dell-networker-security-update-for-multiple-vulnerabilities

CVSS3

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

30.0%

JSON

Related for CVELIST:CVE-2021-21570