CVE-2021-21551
| CVE Published | 2021-05-04 |
|---|---|
| Related CWE(s) | CWE-782: Exposed IOCTL with Insufficient Access Control |
| Related Vendor(s) | dell |
| Related Product(s) | dbutil_2_3.sys |
| Exploitation Reported (CISA KEV) | 2022-03-31 |
| CVSS 3 Base Score | 8.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph