Vulnerability Description
Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to gain admin access on the affected system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Openmanage Server Administrator | < 9.4.0.3 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000183670/dsa-2021-040-dell-emc-openmanVendor Advisory
- https://www.tenable.com/security/research/tra-2021-07ExploitThird Party Advisory
- https://www.dell.com/support/kbdoc/en-us/000183670/dsa-2021-040-dell-emc-openmanVendor Advisory
- https://www.tenable.com/security/research/tra-2021-07ExploitThird Party Advisory
FAQ
What is CVE-2021-21513?
CVE-2021-21513 is a vulnerability with a CVSS score of 8.6 (HIGH). Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A r...
How severe is CVE-2021-21513?
CVE-2021-21513 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-21513?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Openmanage Server Administrator.