Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Integrated_dell_remote_access_controller_9_firmware
(Dell)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-01-25 | CVE-2021-36347 | iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to 2.82.82.82 contain a stack-based buffer overflow vulnerability. An authenticated remote attacker with high privileges could potentially exploit this vulnerability to control process execution and gain access to the iDRAC operating system. | Integrated_dell_remote_access_controller_8_firmware, Integrated_dell_remote_access_controller_9_firmware | 7.2 | ||
| 2022-01-25 | CVE-2021-36348 | iDRAC9 versions prior to 5.00.20.00 contain an input injection vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to cause information disclosure or denial of service by supplying specially crafted input data to iDRAC. | Integrated_dell_remote_access_controller_9_firmware | 8.1 |