Vulnerability Description
Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to arbitrary privileged code execution on the vulnerable application. The severity is Critical as this may lead to system compromise by unauthenticated attackers.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Storage Monitoring And Reporting | < 4.5.0.1 |
| Dell | Storage Resource Manager | < 4.5.0.1 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000184753/dsa-2021-054-dell-emc-srm-andPatchVendor Advisory
- https://www.dell.com/support/kbdoc/en-us/000184753/dsa-2021-054-dell-emc-srm-andPatchVendor Advisory
FAQ
What is CVE-2021-21524?
CVE-2021-21524 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabili...
How severe is CVE-2021-21524?
CVE-2021-21524 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-21524?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Storage Monitoring And Reporting, Dell Storage Resource Manager.