Dell Emc Idrac9 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Dell Emc Idrac9 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2021-36299 — CVSS 7.1 (high): Dell iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.29.00 and 5.00.00.00 contain an SQL injection vulnerability. A remote…
CVE-2021-36300 — CVSS 6.5 (medium): iDRAC9 versions prior to 5.00.00.00 contain an improper input validation vulnerability. An unauthenticated remote attacker may potentially…
CVE-2021-21581 — CVSS 6.5 (medium): Dell EMC iDRAC9 versions prior to 5.00.00.00 contain a cross-site scripting vulnerability. A remote attacker could potentially exploit this…
CVE-2021-21576 — CVSS 6.1 (medium): Dell EMC iDRAC9 versions prior to 4.40.40.00 contain a DOM-based cross-site scripting vulnerability. A remote attacker could potentially…
CVE-2021-21579 — CVSS 6.1 (medium): Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this…
CVE-2021-21577 — CVSS 6.1 (medium): Dell EMC iDRAC9 versions prior to 4.40.40.00 contain a DOM-based cross-site scripting vulnerability. A remote attacker could potentially…
CVE-2021-21578 — CVSS 6.1 (medium): Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this…
CVE-2021-36301 — CVSS 5.9 (medium): Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An…
CVE-2021-21580 — CVSS 4.3 (medium): Dell EMC iDRAC8 versions prior to 2.80.80.80 & Dell EMC iDRAC9 versions prior to 5.00.00.00 contain a Content spoofing / Text injection…