CVE-2021-36326

Summary

Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the client and server into an unencrypted format.

Affected Software

VendorProductVersion RangeStatus
DellDell EMC Streaming Data Platformunspecified < 1.3affected

Weaknesses

  • CWE-757: CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

ADP Enrichment

CVE Program Container

Additional References

References