← Back

Idrac6 Modular

idrac6_modular

Vendor: Dell • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-1212
1Dell
2Idrac6 Modular
Idrac6 Monolithic
Nov 21, 2024
Jul 2, 2018
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
The web-based diagnostics console in Dell EMC iDRAC6 (Monolithic versions prior to 2.91 and Modular all versions) contains a command injection vulnerability. A remote authenticated malicious iDRAC user with access to the...Show more
The web-based diagnostics console in Dell EMC iDRAC6 (Monolithic versions prior to 2.91 and Modular all versions) contains a command injection vulnerability. A remote authenticated malicious iDRAC user with access to the diagnostics console could potentially exploit this vulnerability to execute arbitrary commands as root on the affected iDRAC system.Show less
CVE-2014-8272
2Dell
Intel
4Idrac6 Modular
Idrac6 MonolithicIdrac7+1 more
May 6, 2026
Dec 19, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65, iDRAC6 monolithic before 1.98, and iDRAC7 before 1.57.57 does not properly select session ID values, which makes it easier for remote attackers to execute ar...Show more
The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65, iDRAC6 monolithic before 1.98, and iDRAC7 before 1.57.57 does not properly select session ID values, which makes it easier for remote attackers to execute arbitrary commands via a brute-force attack.Show less