Medium
Proprietary Code CVE(s) | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-21588 | Dell PowerFlex versions 3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker may potentially exploit this vulnerability by tricking the user into performing unwanted actions on the Presentation Server which may lead to configuration changes. | 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Proprietary Code CVE(s) | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-21588 | Dell PowerFlex versions 3.5.x contain a Cross-Site WebSocket Hijacking Vulnerability in the Presentation Server/WebUI. An unauthenticated attacker may potentially exploit this vulnerability by tricking the user into performing unwanted actions on the Presentation Server which may lead to configuration changes. | 6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Product | Affected Versions | Updated Version | Link to Update |
PowerFlex Presentation Server |
3.5.x | 3.6 | https://dl.dell.com/downloads/DL104415_PowerFlex-3.6-Build-355-Complete-Software-Download.zip |
Product | Affected Versions | Updated Version | Link to Update |
PowerFlex Presentation Server |
3.5.x | 3.6 | https://dl.dell.com/downloads/DL104415_PowerFlex-3.6-Build-355-Complete-Software-Download.zip |
Revision | Date | Description |
1.0 | 2021-07-01 | Initial Release |