How severe is CVE-2021-21588?

CVE-2021-21588 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2021-21588

Name: powerflex_presentation_server
Author: dell

6.5MEDIUM

Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker could potentially exploit this vulnerability by tricking

Publicado: 7/12/2021Actualizado: 11/21/2024

Descripción

Dell EMC PowerFlex, v3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker could potentially exploit this vulnerability by tricking the user into performing unwanted actions on the Presentation Server and perform which may lead to configuration changes.

Análisis IAImpulsado por IA

Productos Afectados

dellpowerflex_presentation_server

Referencias

https://www.dell.com/support/kbdoc/000189265
Vendor Advisory
https://www.dell.com/support/kbdoc/000189265
Vendor Advisory