CVE-2021-36326
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-36326
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the client and server into an unencrypted format.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
在会话协商时选择低安全性的算法(算法降级)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Dell Emc Streaming Data Platform 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Dell Emc Streaming Data Platform是美国戴尔(Dell)公司的一个用于实时摄取、存储和分析连续流数据的平台。 Dell Emc Streaming Data Platform存在安全漏洞,未经身份验证的远程攻击者可利用该漏洞将客户机和服务器之间的通信降级为未加密格式。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Dell | Dell EMC Streaming Data Platform | unspecified ~ 1.3 | - |
II. Public POCs for CVE-2021-36326
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-36326
请登录查看更多情报信息。
Same Patch Batch · Dell · 2021-11-30 · 5 CVEs total
| CVE-2021-36330 | 8.1 HIGH | Dell Emc Streaming Data Platform代码问题漏洞 |
| CVE-2021-36329 | 6.5 MEDIUM | Dell Emc Streaming Data Platform 安全漏洞 |
| CVE-2021-36327 | 5.3 MEDIUM | Dell EMC Streaming Data Platform 代码问题漏洞 |
| CVE-2021-36328 | Dell Emc Streaming Data Platform SQL注入漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-757
- CVE-2026-1677
net: TLS 1.2 connections allowed on TLS 1.3 sockets - CVE-2026-6550
Key commitment policy bypass via shared key cache in AWS Enc - CVE-2026-32650
Anviz CrossChex Standard Algorithm Downgrade - CVE-2026-2673
OpenSSL TLS 1.3 server may choose unexpected key agreement g - CVE-2025-10693
Silicon Labs Z-Wave PIR Sensor Joins Network as Non-Secure
V. Comments for CVE-2021-36326
No comments yet