1. Home
  2. CVE Database
  3. CVE-2021-36339
HIGH · 7.8

CVE-2021-36339

The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.

Vulnerability Description

The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
DellSolutions Enabler< 9.1.0.18
DellSolutions Enabler Virtual Appliance< 9.1.0.18
DellUnisphere 360< 9.1.0.29
DellUnisphere For Powermax< 9.1.0.31
DellUnisphere For Powermax Virtual Appliance< 9.1.0.31
DellVasa< 9.1.0.723
DellPowermax Os5978

Related Weaknesses (CWE)

CWE-250

References

FAQ

What is CVE-2021-36339?

CVE-2021-36339 is a vulnerability with a CVSS score of 7.8 (HIGH). The Dell EMC Virtual Appliances before 9.2.2.2 contain undocumented user accounts. A local malicious user may potentially exploit this vulnerability to get privileged access to the virtual appliance.

How severe is CVE-2021-36339?

CVE-2021-36339 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-36339?

Check the references section above for vendor advisories and patch information. Affected products include: Dell Solutions Enabler, Dell Solutions Enabler Virtual Appliance, Dell Unisphere 360, Dell Unisphere For Powermax, Dell Unisphere For Powermax Virtual Appliance.