Описание
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. A remote authenticated attacker could potentially exploit this vulnerability to overwrite configuration information by injecting arbitrarily large payload.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.40.00.00 (исключая)
cpe:2.3:o:dell:idrac9_firmware:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00528
Низкий
5.9 Medium
CVSS3
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-121
CWE-787
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. A remote authenticated attacker could potentially exploit this vulnerability to overwrite configuration information by injecting arbitrarily large payload.
EPSS
Процентиль: 67%
0.00528
Низкий
5.9 Medium
CVSS3
8.1 High
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-121
CWE-787