3 matches found
Dell EMC SQL Injection (CVE-2021-36299)
Dell iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.29.00 and 5.00.00.00 contain an SQL injection vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to cause information disclosure or denial of service by supplying speciall...
Dell EMC iDRAC9 4.40.x < 4.40.29.00 (DSA-2021-177)
The version of Dell EMC iDRAC9 installed on the remote host is prior to 4.40.29.00/5.00.00.00. It is, therefore, affected by a vulnerability as referenced in the DSA-2021-177 advisory: - Dell iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.29.00 and 5.00.00.00 contain an SQL injection...
CVE-2021-36299
Dell EMC iDRAC9 is affected by CVE-2021-36299 in versions 4.40.00.00 and later, before 4.40.29.00 and 5.00.00.00. The vulnerability is SQL injection where a remote authenticated user with low privileges can supply crafted input to disclose information or cause a DoS. The issue is documented in th...