What is the severity of CVE-2021-36308?

CVE-2021-36308 is considered a critical severity vulnerability due to the potential for remote unauthorized access to affected systems.

How do I fix CVE-2021-36308?

To remediate CVE-2021-36308, upgrade Dell Networking OS10 to versions 10.5.0.10 or later, or ensure your system is updated to versions beyond the listed vulnerable releases.

Which systems are affected by CVE-2021-36308?

CVE-2021-36308 impacts Dell OS10 Networking Switches running versions prior to October 2021 with Smart Fabric Services enabled.

Can CVE-2021-36308 be exploited remotely?

Yes, CVE-2021-36308 can be exploited remotely by an unauthenticated attacker without requiring any local access.

What actions can an attacker perform if they exploit CVE-2021-36308?

If exploited, CVE-2021-36308 allows an attacker to gain unauthorized access and potentially execute arbitrary actions on the affected Dell OS10 systems.

Vulnerability/
CVE-2021-36308

critical

9.8

CWE

287 288

20/11/2021

16/9/2024

CVE-2021-36308

First published: Sat Nov 20 2021(Updated: )

Networking OS10, versions prior to October 2021 with Smart Fabric Services enabled, contains an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to gain access and perform actions on the affected system.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell SmartFabric OS10	<10.4.3.8
Dell SmartFabric OS10	>=10.5.0.0<10.5.0.10
Dell SmartFabric OS10	>=10.5.1.0<10.5.1.10
Dell SmartFabric OS10	>=10.5.2.0<10.5.2.8

Remedy

https://www.dell.com/support/kbdoc/en-us/000193076

Never miss a vulnerability like this again

Reference Links

https://www.dell.com/support/kbdoc/en-us/000193076

Frequently Asked Questions

What is the severity of CVE-2021-36308?
CVE-2021-36308 is considered a critical severity vulnerability due to the potential for remote unauthorized access to affected systems.
How do I fix CVE-2021-36308?
To remediate CVE-2021-36308, upgrade Dell Networking OS10 to versions 10.5.0.10 or later, or ensure your system is updated to versions beyond the listed vulnerable releases.
Which systems are affected by CVE-2021-36308?
CVE-2021-36308 impacts Dell OS10 Networking Switches running versions prior to October 2021 with Smart Fabric Services enabled.
Can CVE-2021-36308 be exploited remotely?
Yes, CVE-2021-36308 can be exploited remotely by an unauthenticated attacker without requiring any local access.
What actions can an attacker perform if they exploit CVE-2021-36308?
If exploited, CVE-2021-36308 allows an attacker to gain unauthorized access and potentially execute arbitrary actions on the affected Dell OS10 systems.

agent/weakness
agent/type
agent/remedy
agent/author
agent/severity
agent/references
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/dell
canonical/dell smartfabric os10
version/dell smartfabric os10/10.5.0.0
version/dell smartfabric os10/10.5.1.0
version/dell smartfabric os10/10.5.2.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.