cvedb.io
CVE-2021-36298
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2021-10-01T21:15:08.180 · Last modified 2026-06-17T03:58:37.067

Summary

Dell EMC InsightIQ, versions prior to 4.1.4, contain risky cryptographic algorithms in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an attacker to take complete control of InsightIQ to affect services provided by SSH; so Dell recommends customers to upgrade at the earliest opportunity.

Affected products

dell — isilon_insightiq_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.