Article Number: 000182926
High
Proprietary Code CVE(s) | Description | CVSSBase Score | CVSS Vector String |
CVE-2021-21511 | Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker may potentially exploit this vulnerability, to gain unauthorized read or modification access to other users' backup data. | 8.1 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
Proprietary Code CVE(s) | Description | CVSSBase Score | CVSS Vector String |
CVE-2021-21511 | Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker may potentially exploit this vulnerability, to gain unauthorized read or modification access to other users' backup data. | 8.1 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
CVE(s) Addressed | Product | Affected Version(s) | Updated Version(s) | Link to Update |
CVE-2021-21511 | Dell EMC Avamar Server | 19.3 | Hotfix | 327927 |
Dell EMC Avamar Server | 19.4 | Hotfix | 329256 | |
Dell EMC Integrated Data Protection Appliance (IDPA) | 2.6 | Hotfix | 327927 |
CVE(s) Addressed | Product | Affected Version(s) | Updated Version(s) | Link to Update |
CVE-2021-21511 | Dell EMC Avamar Server | 19.3 | Hotfix | 327927 |
Dell EMC Avamar Server | 19.4 | Hotfix | 329256 | |
Dell EMC Integrated Data Protection Appliance (IDPA) | 2.6 | Hotfix | 327927 |
Revision | Date | Description |
1.0 | 2021-02-04 | initial release |
1.1 | 2021-03-16 | direct link to update for version 19.4 |
Avamar, Avamar Server, PowerProtect Data Protection Software, PowerProtect Data Protection Hardware, Product Security Information
01 Nov 2021
Dell Security Advisory