HIGH🇬🇧 English

CVE-2021-43587

CVSS 8.2v3.1pub. 2021-12-21upd. 2024-11-21

Dell PowerPath Management Appliance, versions 3.2, 3.1, 3.0 P01, 3.0, and 2.6, use hard-coded cryptographic key. A local high-privileged malicious user may potentially exploit this vulnerability to gain access to secrets and elevate to gain higher privileges.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Dell Powerpath Management Appliance

    APP
    Dell
    2.63.03.13.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2022-34446HIGH8.8ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2* contains Authorization Bypass vulnerability. An authe...

CVE-2022-34447HIGH7.2ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains OS Command Injection vulnerabili...

CVE-2022-34448HIGH8.8ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2*, 3.1 & 3.0* contains a Cross-site Request Forgery vul...

CVE-2022-34449MEDIUM6.0ten sam produkt

PowerPath Management Appliance with versions 3.3 & 3.2* contains a Hardcoded Cryptographic Keys vulnerability...

CVE-2022-34450MEDIUM6.7ten sam produkt

PowerPath Management Appliance with version 3.3 contains Privilege Escalation vulnerability. An authenticated...