← back
CVE-2021-21530

CVE-2021-21530

CVSS 8.3 HIGHEPSS 0.9%CWE-78
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.3EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
30 Apr 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Dell OpenManage Enterprise-Modular (OME-M) versions prior to 1.30.00 contain a security bypass vulnerability. An authenticated malicious user with low privileges may potentially exploit the vulnerability to escape from the restricted environment and gain access to sensitive information in the system, resulting in information disclosure and elevation of privilege.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
Affected products
Dell · OpenManage Enterprise

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.dell.com/support/kbdoc/000185205