CVE-2021-36316

Name of the Vulnerable Software and Affected Versions Dell EMC Avamar Server versions 18.2 through 19.4

Description The issue is related to improper privilege management in AUI, which could be exploited by a malicious user with high privileges. This could lead to the disclosure of AUI information and the performance of unauthorized operations on the AUI.

Recommendations For versions 18.2 through 19.4, consider restricting access to the AUI to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the privileges of users who have access to the AUI to prevent unauthorized operations.