CVE-2021-21548

CVSS 7.4 - HIGH
Description

Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to carry out a man-in-the-middle attack by supplying a crafted certificate and intercepting the victim's traffic to view or modify a victim’s data in transit.

Affected Products
3
Vendor Product Version
dell emc_unisphere_for_powermax All versions
dell emc_unisphere_for_powermax_virtual_appliance All versions
dell powermax_os 5978
References
https://www.dell.com/support/kbdoc/en-uk/000189606...
https://www.dell.com/support/kbdoc/en-uk/000189606...
Weakness Types
CWE-295 CWE-295
CVE Information
CVE ID:
CVE-2021-21548
Published:
2023-03-17
Modified:
2024-11-21
CVSS Score:
7.4
Severity:
HIGH
Vector:
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Vendors
dell
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL