CVEs-PoC/2021/CVE-2021-21570.md

### [CVE-2021-21570](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21570)
![](https://img.shields.io/static/v1?label=Product&message=NetWorker&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%2018.x%2C%2019.x%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-78%3A%20Improper%20Neutralization%20of%20Special%20Elements%20used%20in%20an%20OS%20Command%20('OS%20Command%20Injection')&color=brighgreen)

### Description

Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/p1ay8y3ar/cve_monitor