All Dell EMC Integrated System for Microsoft Azure Stack Hub versions contain a privilege escalation vulnerability. A remote malicious user with standard level JEA credentials may potentially exploit this vulnerability to elevate privileges and take over the system.
References
Configurations
Configuration 1 (hide)
AND |
|
History
14 Feb 2022, 19:28
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://www.dell.com/support/kbdoc/en-us/000191165/dsa-2021-178-dell-emc-integrated-solution-for-microsoft-azure-stack-hub-security-update-for-a-just-enough-administration-jea-vulnerability - Mitigation, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 9.0
v3 : 9.9 |
CPE | cpe:2.3:h:dell:emc_integrated_system_for_microsoft_azure_stack_hub:-:*:*:*:*:*:*:* cpe:2.3:o:dell:emc_integrated_system_for_microsoft_azure_stack_hub_firmware:*:*:*:*:*:*:*:* |
|
First Time |
Dell emc Integrated System For Microsoft Azure Stack Hub
Dell emc Integrated System For Microsoft Azure Stack Hub Firmware Dell |
|
CWE | CWE-269 |
09 Feb 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-09 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-36302
Mitre link : CVE-2021-36302
CVE.ORG link : CVE-2021-36302
JSON object : View
Products Affected
dell
- emc_integrated_system_for_microsoft_azure_stack_hub
- emc_integrated_system_for_microsoft_azure_stack_hub_firmware
CWE
CWE-269
Improper Privilege Management