cvedb.io
CVE-2021-36313
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2021-11-23T20:15:11.110 · Last modified 2026-06-17T03:58:38.463

Summary

Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application. Exploitation may lead to a system take over by an attacker. This vulnerability is considered critical as it may be leveraged to completely compromise the vulnerable application as well as the underlying operating system. Dell recommends customers to upgrade at the earliest opportunity.

Affected products

dell — cloudlink

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.