7.5
CVE-2025-21102
- EPSS 0.02%
- Veröffentlicht 08.01.2025 12:15:22
- Zuletzt bearbeitet 24.01.2025 19:10:11
- Quelle security_alert@emc.com
- Teams Watchlist Login
- Unerledigt Login
Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dell ≫ Vxrail D560 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail D560f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E460 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560 Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560f Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E560n Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E660 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E660f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E660n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E665 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E665f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail E665n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail G560 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail G560 Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail G560f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P470 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P570 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P570 Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P570f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P570f Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P580n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P580n Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P670f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P670n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P675f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail P675n Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail S470 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail S570 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail S570 Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail S670 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail V470 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail V570 Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail V570 Vcf Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail V670f Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail Vd-4000r Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail Vd-4000w Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail Vd-4000z Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail Vd-4510c Firmware Version >= 7.0.000 < 7.0.533
Dell ≫ Vxrail Vd-4520c Firmware Version >= 7.0.000 < 7.0.533
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.044 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.4 | 0.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
|
| security_alert@emc.com | 7.5 | 0.8 | 6 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
|
CWE-256 Plaintext Storage of a Password
Storing a password in plaintext may result in a system compromise.
CWE-522 Insufficiently Protected Credentials
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.