Vulnerabilities > CVE-2021-36319 - Exposure of Resource to Wrong Sphere vulnerability in Dell Networking Os10

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

dell

CWE-668

NVD

Published: 2021-11-20

Updated: 2021-11-23

Summary

Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. A low privileged authenticated malicious user can gain access to SNMP authentication failure messages.

Vulnerable Configurations

Part	Description	Count
OS	Dell Dell Networking Os10 10.3.2-R2 Dell Networking Os10 10.4.0-R3S Dell Networking Os10 10.4.1.4 Dell Networking Os10 10.4.2.1 Dell Networking Os10 10.4.3.0 Dell Networking Os10 * Dell Networking Os10 10.5.2.0	7

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://www.dell.com/support/kbdoc/en-us/000193076