CVE-2021-21503

Severity CVSS v4.0:
Pending analysis
Type:
CWE-78 OS Command Injections
Publication date:
08/03/2021
Last modified:
12/03/2021

Description

PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potentially exploit this vulnerability, leading to potential privileges escalation.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:dell:emc_powerscale_onefs:8.1.2:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_powerscale_onefs:8.2.2:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools