CVE-2021-21530

HIGH

Dell OpenManage Enterprise-Modular < 1.30.00 - Authenticated Privilege Escalation and Information Disclosure

Title source: llm
STIX 2.1

Description

Dell OpenManage Enterprise-Modular (OME-M) versions prior to 1.30.00 contain a security bypass vulnerability. An authenticated malicious user with low privileges may potentially exploit the vulnerability to escape from the restricted environment and gain access to sensitive information in the system, resulting in information disclosure and elevation of privilege.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.dell.com/support/kbdoc/000185205

Scores

CVSS v3 8.3
EPSS 0.0039
EPSS Percentile 59.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

Details

CWE
CWE-78
Status published
Products (1)
dell/openmanage_enterprise-modular < 1.30.00
Published Apr 30, 2021
Tracked Since Feb 18, 2026