Privilege Escalation Vulnerability in Dell VNX2 for File
CVE-2021-36290

6.4MEDIUM

Key Information:

Vendor: Dell
Status: Vnx2
Vendor: CVE Published:; 8 April 2022

What is CVE-2021-36290?

Dell VNX2 for File versions 8.1.21.266 and prior contain a vulnerability that allows a local malicious administrator to exploit the system and gain unauthorized elevated privileges. This vulnerability exposes the affected systems to potential abuse, making it crucial for users to apply the necessary security updates to mitigate the risk.

Affected Version(s)

VNX2 < unspecified

References

https://www.dell.com/support/kbdoc/en-us/000191155/dsa-20...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2022
Vulnerability Reserved
Jul 8, 2021