cvedb.io
CVE-2021-36317
MEDIUM · CVSS 6.7
EPSS exploitation probability: 0%
Published 2021-12-21T17:15:08.047 · Last modified 2026-06-17T03:58:38.920

Summary

Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.

Affected products

dell — emc_avamar_server

Does this affect you?

Add your gear to cvedb and we'll alert you only when dell ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.