Vulnerabilities > CVE-2021-36339 - Unspecified vulnerability in Dell products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

dell

NVD

Published: 2022-01-21

Updated: 2022-10-27

Summary

The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.

Vulnerable Configurations

Part	Description	Count
OS	Dell Dell Powermax OS 5978	1
Application	Dell Dell Unisphere FOR Powermax Virtual Appliance * Dell Unisphere FOR Powermax Virtual Appliance - Dell Unisphere FOR Powermax 9.2.1.6 Dell Unisphere FOR Powermax - Dell Unisphere 360 * Dell Solutions Enabler 9.2.1.1 Dell Solutions Enabler - Dell Solutions Enabler 9.1.0.15 Dell Solutions Enabler Virtual Appliance * Dell Solutions Enabler Virtual Appliance - Dell Vasa *	12

References

https://www.dell.com/support/kbdoc/000194640