Idrac9 Firmware Security Vulnerabilities and Issues — Idrac9 Firmware CVE List

Lucene search

DellIdrac9 Firmware

4 matches found

CVE•added 2021/04/30 9:15 p.m.•81 views

CVE-2021-21542

Dell EMC iDRAC9 versions prior to 4.40.10.00 contain multiple stored cross-site scripting vulnerabilities. A remote authenticated malicious user with high privileges could potentially exploit these vulnerabilities to store malicious HTML or JavaScript code through multiple affected while generating...

4.8CVSS5AI score0.00163EPSS

CVE•added 2021/04/30 9:15 p.m.•80 views

CVE-2021-21544

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability to manipulate the username field under the comment section and set the value to any user.

4CVSS4.2AI score0.00214EPSS

CVE•added 2021/04/30 9:15 p.m.•73 views

CVE-2021-21543

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain multiple stored cross-site scripting vulnerabilities. A remote authenticated malicious user with high privileges could potentially exploit these vulnerabilities to store malicious HTML or JavaScript code through multiple affected parameters. When...

4.8CVSS5.4AI score0.00222EPSS

CVE•added 2023/01/18 12:15 p.m.•55 views

CVE-2022-34435

Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. A remote high privileged attacker could exploit this vulnerability to bypass the firmware lock-down configuration and perform a firmware update.

4.9CVSS4.9AI score0.00033EPSS