PT-2021-14596 · Dell Emc · Dell Emc Networker

Published

2021-07-29

Updated

2021-08-05

CVE-2021-21546

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell EMC NetWorker versions 18.x through 19.3.0.3 Dell EMC NetWorker versions 19.4.0.0

Description The issue allows a local low-privileged user of the Networker server to potentially read plain-text credentials from server log files.

Recommendations For versions 18.x through 19.3.0.3, update to version 19.3.0.4 or later. For version 19.4.0.0, update to a version later than 19.4.0.0.

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2021-21546

Affected Products

Dell Emc Networker

PT-2021-14596 · Dell Emc · Dell Emc Networker

CVE-2021-21546

Weakness Enumeration

Related Identifiers

Affected Products

References · 6