CVE-2021-36315

Dell EMC PowerScale Nodes contain a hardware design flaw. This may allow a local unauthenticated user to escalate privileges. This also affects Compliance mode and for Compliance mode clusters, is a critical vulnerability. Dell EMC recommends applying the workaround at your earliest opportunity.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
dellCNA
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
VendorProductVersion
dellemc_powerscale_nodes_a100_firmware
-
dellemc_powerscale_nodes_s210_firmware
-
dellemc_powerscale_nodes_x410_firmware
-
dellemc_powerscale_nodes_h400_firmware
-
dellemc_powerscale_nodes_x210_firmware
-
dellemc_powerscale_nodes_nl410_firmware
-
dellemc_powerscale_nodes_a200_firmware
-
dellemc_powerscale_nodes_a2000_firmware
-
dellemc_powerscale_nodes_h400_firmware
-
dellemc_powerscale_nodes_h500_firmware
-
dellemc_powerscale_nodes_h600_firmware
-
dellemc_powerscale_nodes_h5600_firmware
-
dellemc_powerscale_nodes_f800_firmware
-
dellemc_powerscale_nodes_f810_firmware
-
dellemc_powerscale_nodes_f200_firmware
-
dellemc_powerscale_nodes_f600_firmware
-
dellemc_powerscale_nodes_a300_firmware
-
dellemc_powerscale_nodes_a3000_firmware
-
dellemc_powerscale_nodes_h700_firmware
-
dellemc_powerscale_nodes_h7000_firmware
-
𝑥
= Vulnerable software versions
References
https://www.dell.com/support/kbdoc/en-us/000193005/
https://www.dell.com/support/kbdoc/en-us/000193005/