CVE-2021-21515
Published Mar 1, 2021
Last updated 4 years ago
Overview
- Description
- Dell EMC SourceOne, versions 7.2SP10 and prior, contain a Stored Cross-Site Scripting vulnerability. A remote low privileged attacker may potentially exploit this vulnerability, to hijack user sessions or to trick a victim application user to unknowingly send arbitrary requests to the server.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.4
- Impact score
- 2.7
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:N/I:P/A:N
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9E8FCF9-784C-455D-8DE6-94DD68592B4F",
"versionEndExcluding": "7.2"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78352AD1-92DC-43D8-9200-6125DF04A51C"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4091F5F1-A616-46C9-871A-E1EB0E7F6C9B"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F4863595-10CD-4F4A-A9F4-BB48E32C90CB"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B35C81BC-3CC2-4A6A-8C90-64D7A9A756E7"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CA0CBB46-3A9A-4C28-AB65-A4F8533C909B"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E97B769-1BC9-416F-BAE5-DBF46B430364"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1ED1553F-CF49-40B1-B4DB-76ACFD469FC1"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp7:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE7D3E3D-3CEA-44C1-A06C-14739116C1AE"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp8:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "10ABB9CB-5C5F-4238-BB41-F1E491C8BD89"
},
{
"criteria": "cpe:2.3:a:dell:emc_sourceone:7.2:sp9:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "330A1037-01CA-45B1-BD24-B07AABF14AC4"
}
],
"operator": "OR"
}
]
}
]