2 matches found
Dell iDRAC9 Improper Input Validation (CVE-2022-34435)
Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. A remote high privileged attacker could exploit this vulnerability to bypass the firmware lock-down configuration and perform a firmware update...
CVE-2022-34435
CVE-2022-34435 affects Dell iDRAC9 versions 6.00.02.00 and prior, where an improper input validation in Racadm when firmware lockdown is configured could let a remote, high-privileged attacker bypass the lockdown and perform a firmware update. Some sources cite affected range up to 6.00.30.00; th...