Article Number: 000185250
High
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-21507 | Dell Networking X-Series firmware versions prior to 3.0.1.8 and Dell PowerEdge VRTX firmware versions prior to 2.0.0.82 contain a Weak Password Encryption Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account. | 8.8 | CVSS:3.1(AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) |
Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-21507 | Dell Networking X-Series firmware versions prior to 3.0.1.8 and Dell PowerEdge VRTX firmware versions prior to 2.0.0.82 contain a Weak Password Encryption Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account. | 8.8 | CVSS:3.1(AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) |
CVE Addressed | Product | Affected Version | Updated Version | Link to Update |
CVE-2021-21507 | Dell Networking X-Series firmware | Versions prior to 3.0.1.2 |
3.0.1.8 | Link to X1000 Update Link to X4012 Update |
CVE Addressed | Product | Affected Version | Updated Version | Link to Update |
CVE-2021-21507 | Dell Networking X-Series firmware | Versions prior to 3.0.1.2 |
3.0.1.8 | Link to X1000 Update Link to X4012 Update |
Dell Technologies would like to thank Ken Pyle for his contributions.
Revision | Date | Description |
1.0 | 2021-04-14 | Initial Release |
1.1 | 2021-06-09 | Acknowledgement Update |
X Series
Networking, Product Security Information
10 Jun 2021
3
Dell Security Advisory