CVE-2021-21553
First published: Mon Aug 02 2021(Updated: )
Dell PowerScale OneFS versions 8.1.0-9.1.0 contain an Incorrect User Management vulnerability.under some specific conditions, this can allow the CompAdmin user to elevate privileges and break out of Compliance mode. This is a critical vulnerability and Dell recommends upgrading at the earliest.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dell PowerScale OneFS | >=8.1.0<=9.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Dell PowerScale OneFS vulnerability?
The vulnerability ID for this Dell PowerScale OneFS vulnerability is CVE-2021-21553.
What is the title of this Dell PowerScale OneFS vulnerability?
The title of this Dell PowerScale OneFS vulnerability is 'Dell PowerScale OneFS versions 8.1.0-9.1.0 contain an Incorrect User Management vulnerability'.
What is the severity of CVE-2021-21553?
The severity of CVE-2021-21553 is high with a severity value of 8.8.
How can this vulnerability in Dell PowerScale OneFS be exploited?
Under specific conditions, the CompAdmin user can elevate privileges and break out of Compliance mode in Dell PowerScale OneFS.
How should I mitigate the vulnerability in Dell PowerScale OneFS?
Dell recommends upgrading Dell PowerScale OneFS to the latest version to mitigate this vulnerability.
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dell
- canonical/dell powerscale onefs
- version/dell powerscale onefs/8.1.0
- version/dell powerscale onefs/9.1.0