Information Exposure in Dell Networking OS10 Affecting Authentication Messages
CVE-2021-36319

3.3LOW

Key Information:

Vendor: Dell
Status: Dell Networking Os10
Vendor: CVE Published:; 20 November 2021

What is CVE-2021-36319?

Dell Networking OS10 includes a vulnerability that allows low-privileged authenticated users to exploit access to SNMP authentication failure messages. This information exposure can lead to unauthorized insights about network configurations and security measures, potentially positioning attackers to enhance their malicious strategies.

Affected Version(s)

Dell Networking OS10 < 10.5.1.x

References

https://www.dell.com/support/kbdoc/en-us/000193076

x_refsource_MISC

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 20, 2021
Vulnerability Reserved
Jul 8, 2021