How severe is CVE-2021-21588?

CVE-2021-21588 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2021-21588

Name: powerflex_presentation_server
Author: dell

6.5MEDIUM

Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker could potentially exploit this vulnerability by tricking

Published: 7/12/2021Updated: 11/21/2024

Description

Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker could potentially exploit this vulnerability by tricking the user into performing unwanted actions on the Presentation Server and perform which may lead to configuration changes.

AI AnalysisPowered by AI

Affected Products

dellpowerflex_presentation_server

References

https://www.dell.com/support/kbdoc/000189265
Vendor Advisory
https://www.dell.com/support/kbdoc/000189265
Vendor Advisory