CVE-2018-15776

Published: Dec 13, 2018Modified: Nov 21, 2024

6.8

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.9 / Impact: 5.9

Source: NVD

Description

Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 contain an improper error handling vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to get access to the u-boot shell.

Affected (2)

Products: Dell: Idrac7 Firmware, Idrac8 Firmware

Dell

2 products

Idrac7 Firmware

Idrac8 Firmware

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Dell Idrac7 Firmware	Before 2.61.60.60
Dell Idrac8 Firmware	Before 2.61.60.60

References (4)

http://www.securityfocus.com/bid/106233

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

https://www.dell.com/support/article/us/en/19/sln315190/dell-emc-idrac-multiple-vulnerabilities-cve-2018-15774-and-cve-2018-15776-?lang=en

Source: security_alert@emc.com

Vendor Advisory

http://www.securityfocus.com/bid/106233

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://www.dell.com/support/article/us/en/19/sln315190/dell-emc-idrac-multiple-vulnerabilities-cve-2018-15774-and-cve-2018-15776-?lang=en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.