Vulnerabilities (CVE)

Filtered by vendor Dell Subscribe
Filtered by product Emc Srs Policy Manager
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-21517 1 Dell 1 Emc Srs Policy Manager 2024-11-21 6.4 MEDIUM 7.2 HIGH
SRS Policy Manager 6.X is affected by an XML External Entity Injection (XXE) vulnerability due to a misconfigured XML parser that processes user-supplied DTD input without sufficient validation. A remote unauthenticated attacker can potentially exploit this vulnerability to read system files as a non-root user and may be able to temporarily disrupt the ESRS service.