CVE-2021-36319

Vulnerability

Dell Networking OS10 versions 10.4.3.x, 10.5.0.x, and 10.5.1.x contain an information exposure vulnerability in the SNMP service. A low-privileged authenticated user with local access can view SNMP authentication failure messages, which may contain sensitive data such as community strings or other authentication details [1].

Exploitation

The attacker must already have a valid low-privileged account on the affected OS10 system and local access to the device. No special privileges beyond a standard authenticated session are required. By querying the SNMP authentication failure logs, the attacker can retrieve messages that were not properly restricted [1].

Impact

Successful exploitation results in unauthorized disclosure of sensitive information contained in SNMP authentication failure messages. This has a low confidentiality impact as per CVSS 3.1 base score 3.3 [1]. The attacker does not gain the ability to modify data or disrupt services; the scope remains unchanged.

Mitigation

Dell has released a fix as part of the October 2021 security update. Customers should upgrade to OS10 versions 10.4.3.x or 10.5.x that include the patch [1]. If upgrading is not immediately possible, restrict local access to trusted administrators and monitor SNMP logs for unauthorized access attempts.