NVD

Vulnerability Change Records for CVE-2021-21515

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:dell:emc_sourceone::::::::* versions up to (excluding) 7.2 cpe:2.3:a:dell:emc_sourceone:7.2:-::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp1::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp2::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp3::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp4::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp5::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp6::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp7::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp8::::::* cpe:2.3:a:dell:emc_sourceone:7.2:sp9::::::*
Added	CVSS V2		NIST (AV:N/AC:M/Au:S/C:N/I:P/A:N)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3.1		NIST AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Added	CWE		NIST CWE-79
Changed	Reference Type	https://www.dell.com/support/kbdoc/en-us/000183430/dsa-2021-043-dell-emc-sourceone-java-script-xss-stored-vulnerability No Types Assigned	https://www.dell.com/support/kbdoc/en-us/000183430/dsa-2021-043-dell-emc-sourceone-java-script-xss-stored-vulnerability Vendor Advisory