CVE-2021-21507: Weak Encryption
First published: Fri Apr 30 2021(Updated: )
Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX Switch Module firmware versions prior to 2.0.0.82 contain a Weak Password Encryption Vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell X1008p Firmware | <3.0.1.8 | |
| Dell X1008p | ||
| Dell X1018p Firmware | <3.0.1.8 | |
| Dell X1018p | ||
| Dell X1026p Firmware | <3.0.1.8 | |
| Dell X1026p | ||
| Dell X1052p Firmware | <3.0.1.8 | |
| Dell X1052p | ||
| Dell X4012 Firmware | <3.0.1.8 | |
| Dell X4012 | ||
| <2.0.0.82 | ||
| <2.0.0.82 | ||
| Dell X1008 Firmware | <3.0.1.8 | |
| Dell X1008 | ||
| Dell X1018 Firmware | <3.0.1.8 | |
| Dell X1018 | ||
| Dell X1026 Firmware | <3.0.1.8 | |
| Dell X1026 | ||
| Dell X1052 Firmware | <3.0.1.8 | |
| Dell X1052 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-21507?
CVE-2021-21507 is a Weak Password Encryption Vulnerability found in Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX Switch Module firmware versions prior to 2.0.0.82.
What is the severity of CVE-2021-21507?
The severity of CVE-2021-21507 is rated as critical with a CVSS score of 9.8.
How can an attacker exploit CVE-2021-21507?
A remote unauthenticated attacker could potentially exploit CVE-2021-21507, leading to the disclosure of sensitive information.
Which Dell products are affected by CVE-2021-21507?
Dell EMC Networking X-Series firmware versions prior to 3.0.1.8 and Dell EMC PowerEdge VRTX Switch Module firmware versions prior to 2.0.0.82 are affected by CVE-2021-21507.
How can I fix CVE-2021-21507?
To fix CVE-2021-21507, it is recommended to update the Dell EMC Networking X-Series firmware to version 3.0.1.8 or later and Dell EMC PowerEdge VRTX Switch Module firmware to version 2.0.0.82 or later.
- collector/nvd-index
- agent/references
- agent/tags
- agent/event
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/remedy
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell x1008p firmware
- canonical/dell x1008p
- canonical/dell x1018p firmware
- canonical/dell x1018p
- canonical/dell x1026p firmware
- canonical/dell x1026p
- canonical/dell x1052p firmware
- canonical/dell x1052p
- canonical/dell x4012 firmware
- canonical/dell x4012
- canonical/dell x1008 firmware
- canonical/dell x1008
- canonical/dell x1018 firmware
- canonical/dell x1018
- canonical/dell x1026 firmware
- canonical/dell x1026
- canonical/dell x1052 firmware
- canonical/dell x1052