Article Number: 000191604
High
Proprietary Code CVE(s) | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-36298 | Dell Isilon InsightIQ, versions prior to 4.1.4, contain Risky Cryptographic Algorithm in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an attacker to take complete control of InsightIQ to affect services provided by SSH; Dell recommends customers to upgrade at the earliest opportunity. | 8.1 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Proprietary Code CVE(s) | Description | CVSS Base Score | CVSS Vector String |
CVE-2021-36298 | Dell Isilon InsightIQ, versions prior to 4.1.4, contain Risky Cryptographic Algorithm in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an attacker to take complete control of InsightIQ to affect services provided by SSH; Dell recommends customers to upgrade at the earliest opportunity. | 8.1 | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
CVE(s) Addressed | Product | Affected Version(s) | Updated Version(s) | Link to Update |
CVE-2021-36298 | Isilon InsightIQ | 4.1.3.88 | 4.1.4.57 |
https://www.dell.com/support/home/en-in/product-support/product/isilon-insightiq/drivers Select Version 4.1.4 and Package based on requirement.
|
CVE(s) Addressed | Product | Affected Version(s) | Updated Version(s) | Link to Update |
CVE-2021-36298 | Isilon InsightIQ | 4.1.3.88 | 4.1.4.57 |
https://www.dell.com/support/home/en-in/product-support/product/isilon-insightiq/drivers Select Version 4.1.4 and Package based on requirement.
|
None
Revision | Date | Description |
0.1 | 2021-09-17 | Initial Release. |
Product Security Information
17 Sep 2021
Dell Security Advisory