Description
Dell EMC Networker versions prior to 19.5 contain an Improper Authorization vulnerability. Any local malicious user with networker user privileges may exploit this vulnerability to upload malicious file to unauthorized locations and execute it.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://www.dell.com/support/kbdoc/000192419
Scores
CVSS v3
6.0
EPSS
0.0004
EPSS Percentile
11.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N
Details
CWE
CWE-285
Status
published
Products (1)
dell/emc_networker
< 19.5.0.0
Published
Nov 23, 2021
Tracked Since
Feb 18, 2026