CVE-2021-21505

Summary

Dell EMC Integrated System for Microsoft Azure Stack Hub, versions 1906 – 2011, contain an undocumented default iDRAC account. A remote unauthenticated attacker, with the knowledge of the default credentials, could potentially exploit this to log in to the system to gain root privileges.

Affected Software

VendorProductVersion RangeStatus
DellDell EMC Integrated System for Microsoft Azure Stack Hubunspecified < 2102affected

Weaknesses

  • CWE-255: CWE-255: Credentials Management

ADP Enrichment

CVE Program Container

Additional References

References