← Back

Emc Idrac7

emc_idrac7

Vendor: Dell • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-1211
1Dell
2Emc Idrac7
Emc Idrac8
Nov 21, 2024
Mar 23, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain a path traversal vulnerability in its Web server's URI parser which could be used to obtain specific sensitive data without authentication. A remote unauthent...Show more
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain a path traversal vulnerability in its Web server's URI parser which could be used to obtain specific sensitive data without authentication. A remote unauthenticated attacker may be able to read configuration settings from the iDRAC by querying specific URI strings.Show less
CVE-2018-1207
1Dell
2Emc Idrac7
Emc Idrac8
Nov 21, 2024
Mar 23, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code. A remote unauthenticated attacker may potentially be able to use CGI variables to exec...Show more
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code. A remote unauthenticated attacker may potentially be able to use CGI variables to execute remote code.Show less