CVE-2021-21562

Summary

Dell EMC PowerScale OneFS contains an untrusted search path vulnerability. This vulnerability allows a user with (ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE) and (ISI_PRIV_SYS_UPGRADE or ISI_PRIV_AUDIT) to provide an untrusted path which can lead to run resources that are not under the application’s direct control.

Affected Software

VendorProductVersion RangeStatus
DellPowerScale OneFS8.1.2, 8.1.3, 9.1.0.x, 9.0.0.xaffected

Weaknesses

  • CWE-426: CWE-426: Untrusted Search Path

ADP Enrichment

CVE Program Container

Additional References

References