Impact
High
Details
Proprietary Code CVE(s) |
Description |
CVSS Base Score |
CVSS Vector String |
CVE-2021-36298 |
Dell Isilon InsightIQ, versions prior to 4.1.4, contain Risky Cryptographic Algorithm in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an attacker to take complete control of InsightIQ to affect services provided by SSH; Dell recommends customers to upgrade at the earliest opportunity. |
8.1 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Proprietary Code CVE(s) |
Description |
CVSS Base Score |
CVSS Vector String |
CVE-2021-36298 |
Dell Isilon InsightIQ, versions prior to 4.1.4, contain Risky Cryptographic Algorithm in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an attacker to take complete control of InsightIQ to affect services provided by SSH; Dell recommends customers to upgrade at the earliest opportunity. |
8.1 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.
CVE(s) Addressed |
Product |
Affected Version(s) |
Updated Version(s) |
Link to Update |
CVE-2021-36298 |
Isilon InsightIQ |
4.1.3.88 |
4.1.4.57 |
https://www.dell.com/support/home/en-in/product-support/product/isilon-insightiq/drivers Select Version 4.1.4 and Package based on requirement.
- Isilon InsightIQ 4.1.4 Installation File for Linux Computers
- Isilon InsightIQ 4.1.4 Installation File for Other Supported VMware Products
- Isilon InsightIQ 4.1.4 Installation File for VMware ESX, VMware ESXi, or VMware Workstation
- Isilon InsightIQ 4.1.4 Patch file for Linux computers
|
CVE(s) Addressed |
Product |
Affected Version(s) |
Updated Version(s) |
Link to Update |
CVE-2021-36298 |
Isilon InsightIQ |
4.1.3.88 |
4.1.4.57 |
https://www.dell.com/support/home/en-in/product-support/product/isilon-insightiq/drivers Select Version 4.1.4 and Package based on requirement.
- Isilon InsightIQ 4.1.4 Installation File for Linux Computers
- Isilon InsightIQ 4.1.4 Installation File for Other Supported VMware Products
- Isilon InsightIQ 4.1.4 Installation File for VMware ESX, VMware ESXi, or VMware Workstation
- Isilon InsightIQ 4.1.4 Patch file for Linux computers
|
Workarounds & Mitigations
None
Revision History
Revision | Date | Description |
0.1 | 2021-09-17 | Initial Release. |
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide
Affected Products
Product Security Information