HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2021-36330

CVSS 8.1v3.1pub. 2021-11-30upd. 2024-11-21

Dell EMC Streaming Data Platform versions before 1.3 contain an Insufficient Session Expiration Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to reuse old session artifacts to impersonate a legitimate user.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Dell Emc Streaming Data Platform

    APP
    Dell
    < 1.3
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2021-36328HIGH8.8ten sam produkt

Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A remote malicious...

CVE-2021-36326MEDIUM6.5ten sam produkt

Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interfa...

CVE-2021-36327MEDIUM5.3ten sam produkt

Dell EMC Streaming Data Platform versions before 1.3 contain a Server Side Request Forgery Vulnerability. A re...

CVE-2021-36329MEDIUM6.5ten sam produkt

Dell EMC Streaming Data Platform versions before 1.3 contain an Indirect Object Reference Vulnerability. A rem...

CVE-2026-22769CRITICAL10.0⚠ KEVPL ✓ten sam vendor

Dell RecoverPoint for VMs — zahardkodowane dane uwierzytelniające (RCE, root)