CVE Published: 20/11/2021 |
CVE Updated: 16/09/2024 |
CVE Year: 2021 Source: dell |
Vendor: Dell |
Product: Networking OS Status : PUBLISHED
CVE-2021-36307 Description
Networking OS10, versions prior to October 2021 with RESTCONF API enabled, contains a privilege escalation vulnerability. A malicious low privileged user with specific access to the API could potentially exploit this vulnerability to gain admin privileges on the affected system.
Metrics
CVSS Version: 3.1 |
Base Score: 8.8 HIGH Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H