CVE-2021-21511

Sep 3, 2024

Published Date: 2021-02-15T22:15Z

Last Modified: 2022-04-26T15:59Z

CVSS Score: 8.1 (HIGH)

EPSS Score: 0.18%

Risk Score: 5.67 (HIGH)

Risk Score based on CVSS score and EPSS. This score is for reference purposes and is not internationally recognized.

CVSS: 8.1 | EPSS: 0.18%

NVD Links:

https://nvd.nist.gov/vuln/detail/CVE-2021-21511

Description: Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain unauthorized read or modification access to other users’ backup data.

Mitre ATT&CK Technical v15.1

T1583.004 – Server
T1584.004 – Server
T1053.002 – At

Technical Analysis & Mitigation Measures

Reference Links

https://www.dell.com/support/kbdoc/en-us/000182926/dsa-2021-033-dell-emc-avamar-server-improper-authorization-vulnerability

Vendor - Produce - Version

emc_avamar_server - dell, emc_integrated_data_protection_appliance - dell, emc_avamar_server - dell

Disclaimer

The content on this website is automatically sourced from external websites such as the National Vulnerability Database (NVD), GitHub, and other security-related sources. This content is for reference purposes only, and we are not responsible for the accuracy or integrity of the information linked or displayed from these sources.