ID
VAR-202104-0668
CVE
CVE-2021-21526
TITLE
Dell Technologies Dell PowerScale OneFS Operating system command injection vulnerability
Trust: 0.6
sources:
CNNVD: CNNVD-202104-1545
DESCRIPTION
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains a privilege escalation in SmartLock compliance mode that may allow compadmin to execute arbitrary commands as root. Dell Technologies Dell PowerScale OneFS is an operating system of Dell Technologies in the United States. Offers the PowerScale OneFS operating system for scale-out NAS
Trust: 1.08
sources:
NVD: CVE-2021-21526 //
VULHUB: VHN-379930 //
VULMON: CVE-2021-21526
AFFECTED PRODUCTS
| vendor: | dell | model: | powerscale onefs | scope: | lte | version: | 9.1.0 | Trust: 1.0 |
| vendor: | dell | model: | powerscale onefs | scope: | gte | version: | 8.1.0 | Trust: 1.0 |
sources:
NVD: CVE-2021-21526
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-379930 //
CNNVD: CNNVD-202104-1545 //
NVD: CVE-2021-21526 //
NVD: CVE-2021-21526
PROBLEMTYPE DATA
| problemtype: | CWE-78 | Trust: 1.1 |
sources:
VULHUB: VHN-379930 //
NVD: CVE-2021-21526
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202104-1545
TYPE
operating system commend injection
Trust: 0.6
sources:
CNNVD: CNNVD-202104-1545
PATCH
| title: | Dell Technologies Dell PowerScale OneFS Fixes for operating system command injection vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=147998 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202104-1545
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-21526 | Trust: 1.8 |
| db: | CNNVD | id: | CNNVD-202104-1545 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-379930 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2021-21526 | Trust: 0.1 |
sources:
VULHUB: VHN-379930 //
VULMON: CVE-2021-21526 //
CNNVD: CNNVD-202104-1545 //
NVD: CVE-2021-21526
REFERENCES
| url: | https://www.dell.com/support/kbdoc/000185202 | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2021-21526 | Trust: 0.6 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-379930 //
VULMON: CVE-2021-21526 //
CNNVD: CNNVD-202104-1545 //
NVD: CVE-2021-21526
SOURCES
| db: | VULHUB | id: | VHN-379930 |
| db: | VULMON | id: | CVE-2021-21526 |
| db: | CNNVD | id: | CNNVD-202104-1545 |
| db: | NVD | id: | CVE-2021-21526 |
LAST UPDATE DATE
2024-11-23T21:50:55.581000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-379930 | date: | 2021-04-27T00:00:00 |
| db: | VULMON | id: | CVE-2021-21526 | date: | 2021-04-27T00:00:00 |
| db: | CNNVD | id: | CNNVD-202104-1545 | date: | 2021-04-28T00:00:00 |
| db: | NVD | id: | CVE-2021-21526 | date: | 2024-11-21T05:48:31.500 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-379930 | date: | 2021-04-20T00:00:00 |
| db: | VULMON | id: | CVE-2021-21526 | date: | 2021-04-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-202104-1545 | date: | 2021-04-20T00:00:00 |
| db: | NVD | id: | CVE-2021-21526 | date: | 2021-04-20T17:15:11.537 |