Lucene search

[email protected]NVD:CVE-2021-43588

HistoryJan 24, 2022 - 8:15 p.m.

CVE-2021-43588

2022-01-2420:15:08

CWE-20

[email protected]

web.nvd.nist.gov

dell emc

data protection

central

input validation

vulnerability

denial of service

remote unauthenticated attacker

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

56.9%

JSON

Dell EMC Data Protection Central version 19.5 contains an Improper Input Validation Vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service.

Affected configurations

Nvd

Node

dellemc_data_protection_centralRange<19.6

VendorProductVersionCPE
dellemc_data_protection_central*cpe:2.3:a:dell:emc_data_protection_central:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
dell	emc_data_protection_central	*	cpe:2.3:a:dell:emc_data_protection_central::::::::

References

www.dell.com/support/kbdoc/000195103

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

56.9%

JSON

Related for NVD:CVE-2021-43588

cnvd1 prion1 cvelist1 cve1