CVE-2021-21529

LOW

Dell System Update < 1.9 - Authenticated Denial of Service via Multiple Instance Memory Exhaustion

Title source: llm

Description

Dell System Update (DSU) 1.9 and earlier versions contain a denial of service vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to cause the system to run out of memory by running multiple instances of the vulnerable application.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.dell.com/support/kbdoc/en-us/000184608/dsa-2021-059-dell-emc-system-update-dsu-security-update-for-denial-of-service-vulnerability

Scores

CVSS v3 3.8

EPSS 0.0004

EPSS Percentile 12.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

Details

CWE

CWE-400

Status published

Products (1)

dell/system_update < 1.9

Published Apr 02, 2021

Tracked Since Feb 18, 2026