Privilege Escalation Vulnerability in Dell VNX2 for File Software
CVE-2021-36293

6.4MEDIUM

Key Information:

Vendor: Dell
Status: Vnx2
Vendor: CVE Published:; 8 April 2022

What is CVE-2021-36293?

Dell VNX2 for File versions up to 8.1.21.266 are susceptible to a privilege escalation vulnerability. This issue allows a local malicious administrator to exploit the flaw, potentially granting elevated privileges within the system. Organizations utilizing these affected versions should implement the necessary security updates and review their access controls to mitigate this risk.

Affected Version(s)

VNX2 < unspecified

References

https://www.dell.com/support/kbdoc/en-us/000191155/dsa-20...

x_refsource_MISC

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2022
Vulnerability Reserved
Jul 8, 2021