Описание
iDRAC9 versions prior to 5.00.00.00 contain an improper input validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability by sending a specially crafted malicious request to crash the webserver or cause information disclosure.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.00.00.00 (исключая)
cpe:2.3:o:dell:emc_idrac9_firmware:*:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05939
Низкий
6.5 Medium
CVSS3
8.2 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
github
около 4 лет назад
iDRAC9 versions prior to 5.00.00.00 contain an improper input validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability by sending a specially crafted malicious request to crash the webserver or cause information disclosure.
EPSS
Процентиль: 90%
0.05939
Низкий
6.5 Medium
CVSS3
8.2 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-89