exploitDog

GHSA-cxcf-v498-h2h8

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or execute arbitrary code on the system by sending specially crafted input data.

Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or execute arbitrary code on the system by sending specially crafted input data.

Ссылки

EPSS

Процентиль: 88%

0.04115

Низкий

CVE ID

Связанные уязвимости

CVE-2020-5344

CVSS3: 7

nvd

почти 6 лет назад

Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or execute arbitrary code on the system by sending specially crafted input data.

BDU:2022-07410

CVSS3: 9.8

fstec

почти 6 лет назад

Уязвимость микропрограммного обеспечения контроллеров удаленного доступа iDRAC7, iDRAC8 и iDRAC9, вызванная переполнением буфера на стеке, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

EPSS

Процентиль: 88%

0.04115

Низкий

CVE ID