1. Home
  2. CVE Database
  3. CVE-2021-36315
MEDIUM · 6.8

CVE-2021-36315

Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a c...

Vulnerability Description

Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a critical vulnerability. Dell EMC recommends applying the workaround at your earliest opportunity.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
DellEmc Powerscale Nodes A100 Firmware-
DellEmc Powerscale Nodes A100-
DellEmc Powerscale Nodes S210 Firmware-
DellEmc Powerscale Nodes S210-
DellEmc Powerscale Nodes X410 Firmware-
DellEmc Powerscale Nodes X410-
DellEmc Powerscale Nodes H400 Firmware-
DellEmc Powerscale Nodes H400-
DellEmc Powerscale Nodes X210 Firmware-
DellEmc Powerscale Nodes X210-
DellEmc Powerscale Nodes Nl410 Firmware-
DellEmc Powerscale Nodes Nl410-
DellEmc Powerscale Nodes A200 Firmware-
DellEmc Powerscale Nodes A200-
DellEmc Powerscale Nodes A2000 Firmware-
DellEmc Powerscale Nodes A2000-
DellEmc Powerscale Nodes H500 Firmware-
DellEmc Powerscale Nodes H500-
DellEmc Powerscale Nodes H600 Firmware-
DellEmc Powerscale Nodes H600-

References

FAQ

What is CVE-2021-36315?

CVE-2021-36315 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a c...

How severe is CVE-2021-36315?

CVE-2021-36315 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-36315?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Emc Powerscale Nodes A100 Firmware, Dell Emc Powerscale Nodes A100, Dell Emc Powerscale Nodes S210 Firmware, Dell Emc Powerscale Nodes S210, Dell Emc Powerscale Nodes X410 Firmware.