CVE-2021-36330

Name of the Vulnerable Software and Affected Versions Dell EMC Streaming Data Platform versions prior to 1.3

Description The issue allows a remote unauthenticated attacker to potentially reuse old session artifacts and impersonate a legitimate user due to insufficient session expiration.

Recommendations For versions prior to 1.3, update to version 1.3 or later to resolve the issue. As a temporary workaround, consider implementing additional session validation mechanisms to minimize the risk of exploitation. Restrict access to sensitive areas of the platform to minimize the risk of unauthorized access until the issue is resolved.