Vulnerability Description
Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability. A remote unauthenticated attacker may send crafted requests with overlapping ranges to cause the application to compress each of the requested bytes, resulting in a crash due to excessive memory consumption and preventing users from accessing the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Emc Openmanage Server Administrator | < 9.3.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108092Broken LinkThird Party AdvisoryVDB Entry
- https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-opVendor Advisory
- http://www.securityfocus.com/bid/108092Broken LinkThird Party AdvisoryVDB Entry
- https://www.dell.com/support/article/us/en/04/sln316915/dsa-2019-060-dell-emc-opVendor Advisory
FAQ
What is CVE-2019-3721?
CVE-2019-3721 is a vulnerability with a CVSS score of 7.5 (HIGH). Dell EMC Open Manage System Administrator (OMSA) versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability. A remote unauthenticated attacker may send crafted requests with ove...
How severe is CVE-2019-3721?
CVE-2019-3721 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-3721?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Emc Openmanage Server Administrator.