CVE-2021-21584
HIGHDell OpenManage Enterprise 3.5 & OpenManage Enterprise-Modular 1.30.00 - Authenticated Information Disclosure
Title source: llmDescription
Dell OpenManage Enterprise version 3.5 and OpenManage Enterprise-Modular version 1.30.00 contain an information disclosure vulnerability. An authenticated low privileged attacker may potentially exploit this vulnerability leading to disclosure of the OIDC server credentials.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.dell.com/support/kbdoc/000189673
Scores
CVSS v3
7.7
EPSS
0.0024
EPSS Percentile
46.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (2)
dell/openmanage_enterprise
3.5
dell/openmanage_enterprise-modular
1.30.00
Published
Aug 09, 2021
Tracked Since
Feb 18, 2026