Dell EMC Streaming Data Platform versions before 1.3 contain an Insufficient Session Expiration Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to reuse old session artifacts to impersonate a legitimate user.
References
Configurations
History
02 Dec 2021, 15:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:dell:emc_streaming_data_platform:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
References | (MISC) https://www.dell.com/support/kbdoc/en-in/000193697/dsa-2021-205-dell-emc-streaming-data-platform-security-update-for-third-party-vulnerabilities - Vendor Advisory |
30 Nov 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-11-30 21:15
Updated : 2024-02-04 22:08
NVD link : CVE-2021-36330
Mitre link : CVE-2021-36330
CVE.ORG link : CVE-2021-36330
JSON object : View
Products Affected
dell
- emc_streaming_data_platform
CWE
CWE-613
Insufficient Session Expiration