CVE-2021-21524
First published: Tue Mar 30 2021(Updated: )
Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to arbitrary privileged code execution on the vulnerable application. The severity is Critical as this may lead to system compromise by unauthenticated attackers.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell EMC Storage Monitoring and Reporting | <4.5.0.1 | |
| Dell Storage Resource Manager | <4.5.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-21524?
CVE-2021-21524 has a critical severity rating due to its potential for arbitrary privileged code execution.
How do I fix CVE-2021-21524?
To fix CVE-2021-21524, upgrade to Dell SRM version 4.5.0.1 or Dell SMR version 4.5.0.1 or later.
What software is affected by CVE-2021-21524?
CVE-2021-21524 affects Dell Storage Monitoring and Reporting and Dell Storage Resource Manager versions prior to 4.5.0.1.
Is CVE-2021-21524 exploitable remotely?
Yes, CVE-2021-21524 can be exploited remotely by an unauthenticated attacker.
What type of vulnerability is CVE-2021-21524?
CVE-2021-21524 is identified as an Untrusted Deserialization vulnerability.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/remedy
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/dell
- canonical/dell emc storage monitoring and reporting
- canonical/dell storage resource manager