Impact
High
Details
Proprietary Code CVE(s) |
Description |
CVSSBase Score |
CVSS Vector String |
CVE-2021-21512 |
Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. A locally authenticated high privileged Cyber Recovery user may potentially exploit this vulnerability leading to the takeover of the notification email account. |
7.9 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N |
Proprietary Code CVE(s) |
Description |
CVSSBase Score |
CVSS Vector String |
CVE-2021-21512 |
Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. A locally authenticated high privileged Cyber Recovery user may potentially exploit this vulnerability leading to the takeover of the notification email account. |
7.9 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N |
Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.
CVE(s) Addressed |
Product |
Affected Version(s) |
Updated Version(s) |
Link to Update |
CVE-2021-21512 |
PowerProtect Cyber Recovery |
19.7.0.1 |
19.7.0.2 |
Contact Dell EMC Customer Support |
CVE(s) Addressed |
Product |
Affected Version(s) |
Updated Version(s) |
Link to Update |
CVE-2021-21512 |
PowerProtect Cyber Recovery |
19.7.0.1 |
19.7.0.2 |
Contact Dell EMC Customer Support |
Workarounds & Mitigations
None
Revision History
Revision | Date | Description |
1.0 | 2021-02-17 | Initial Release |
1.1 | 2021-02-18 | Minor update |
Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide
Affected Products
PowerProtect Cyber Recovery, Product Security Information