Vulnerabilities > CVE-2021-21596 - Unspecified vulnerability in Dell products

CVSS 8.8 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

dell

NVD

Published: 2021-08-09

Updated: 2022-10-24

Summary

Dell OpenManage Enterprise versions 3.4 through 3.6.1 and Dell OpenManage Enterprise Modular versions 1.20.00 through 1.30.00, contain a remote code execution vulnerability. A malicious attacker with access to the immediate subnet may potentially exploit this vulnerability leading to information disclosure and a possible elevation of privileges.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Openmanage Enterprise Modular 1.20.00 Dell Openmanage Enterprise Modular 1.20.10 Dell Openmanage Enterprise Modular 1.30.00 Dell Openmanage Enterprise 3.5 Dell Openmanage Enterprise 3.6.1	5

References

https://www.dell.com/support/kbdoc/000189673