Denial of Service Vulnerability in Dell System Update Software
CVE-2021-21529

3.8LOW

Key Information:

Vendor: Dell
Status: Dellemc System Update - Dsu
Vendor: CVE Published:; 2 April 2021

What is CVE-2021-21529?

Dell System Update (DSU) versions 1.9 and earlier are prone to a denial of service vulnerability. This issue allows a local authenticated user with low privileges to exploit the vulnerability, leading to excessive memory consumption by initiating multiple instances of the application. As a result, the affected system could become unresponsive, significantly impacting the operations reliant on the software. Users should ensure they are running a patched version to mitigate this risk.

Affected Version(s)

DellEMC System Update - DSU < unspecified

References

https://www.dell.com/support/kbdoc/en-us/000184608/dsa-20...

x_refsource_MISC

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 2, 2021
Vulnerability Reserved
Jan 4, 2021