cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-36326,https://securityvulnerability.io/vulnerability/CVE-2021-36326,SSL Strip Vulnerability in Dell EMC Streaming Data Platform,"The Dell EMC Streaming Data Platform is affected by a vulnerability in its User Interface that allows for an SSL Strip attack. This issue enables an unauthenticated remote attacker to exploit the vulnerability, potentially forcing the communication between client and server to downgrade to an unencrypted format. This could expose sensitive data transmitted during the communication process, posing significant risks to user security and data integrity.",Dell,Dell Emc Streaming Data Platform,6.5,MEDIUM,0.002219999907538295,false,,false,false,false,,,false,false,,2021-11-30T21:15:00.000Z,0
CVE-2021-36327,https://securityvulnerability.io/vulnerability/CVE-2021-36327,Server Side Request Forgery in Dell EMC Streaming Data Platform,"The Dell EMC Streaming Data Platform, prior to version 1.3, is affected by a Server Side Request Forgery vulnerability. This flaw allows remote unauthenticated attackers to potentially exploit the system, facilitating unauthorized port scanning of internal networks and making arbitrary HTTP requests to an attacker-controlled domain. Organizations using the affected versions should prioritize upgrading to mitigate this risk.",Dell,Dell Emc Streaming Data Platform,5.3,MEDIUM,0.0015399999683722854,false,,false,false,false,,,false,false,,2021-11-30T21:15:00.000Z,0
CVE-2021-36330,https://securityvulnerability.io/vulnerability/CVE-2021-36330,Insufficient Session Expiration in Dell EMC Streaming Data Platform,"The Dell EMC Streaming Data Platform, specifically versions prior to 1.3, is susceptible to an insufficient session expiration vulnerability. This flaw allows a remote unauthenticated attacker to potentially exploit the system by reusing old session artifacts, thus impersonating legitimate users. This can lead to unauthorized access and actions by exploiting stale sessions that should have been terminated, undermining user account security and system integrity.",Dell,Dell Emc Streaming Data Platform,8.1,HIGH,0.004220000002533197,false,,false,false,false,,,false,false,,2021-11-30T21:15:00.000Z,0
CVE-2021-36328,https://securityvulnerability.io/vulnerability/CVE-2021-36328,SQL Injection Vulnerability in Dell EMC Streaming Data Platform,"The Dell EMC Streaming Data Platform prior to version 1.3 is susceptible to a SQL Injection vulnerability. Attackers can exploit this flaw remotely, allowing them to execute unauthorized SQL commands. This could lead to exposure of sensitive information stored in the database, compromising data integrity and confidentiality.",Dell,Dell Emc Streaming Data Platform,8.8,HIGH,0.0008699999889358878,false,,false,false,false,,,false,false,,2021-11-30T21:15:00.000Z,0
CVE-2021-36329,https://securityvulnerability.io/vulnerability/CVE-2021-36329,Indirect Object Reference Vulnerability in Dell EMC Streaming Data Platform,"The Dell EMC Streaming Data Platform, prior to version 1.3, is susceptible to an indirect object reference vulnerability. This weakness may allow a remote attacker to exploit the system and potentially access sensitive information. Proper security measures and updates are essential to mitigate the risks associated with this vulnerability.",Dell,Dell Emc Streaming Data Platform,6.5,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2021-11-30T21:15:00.000Z,0