Dell VxRail Manager < 7.0.200: Plain-text Password Storage CVE-2021-21508
CVE-2021-21508 Published on May 22, 2026

Dell VxRail versions before 7.0.200 contain a Plain-text Password Storage Vulnerability in VxRail Manager. A sys-admin user may exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2021-21508 is exploitable with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Insertion of Sensitive Information into Log File

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

Affected Versions

Dell VxRail:

Before 7.0.200 is affected.

Dell VxRail Manager < 7.0.200: Plain-text Password Storage CVE-2021-21508CVE-2021-21508 Published on May 22, 2026

Vulnerability Analysis

Weakness Type

Insertion of Sensitive Information into Log File

Affected Versions

Dell VxRail Manager < 7.0.200: Plain-text Password Storage CVE-2021-21508
CVE-2021-21508 Published on May 22, 2026