Dell Integrated Dell Remote Access Controller 9 vulnerabilities
3 known vulnerabilities affecting dell/integrated_dell_remote_access_controller_9.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-24422P2CRITICALCVSS 9.8≥ unspecified, < 5.10.10.002022-05-26
CVE-2022-24422 [CRITICAL] CWE-287 CVE-2022-24422: Dell iDRAC9 versions 5.00.00.00 and later but prior to 5.10.10.00, contain an improper authenticatio
Dell iDRAC9 versions 5.00.00.00 and later but prior to 5.10.10.00, contain an improper authentication vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access to the VNC Console.
nvd
CVE-2024-25943P3CRITICALCVSS 9.8≥ N/A, < 7.00.00.172≥ N/A, < 7.10.50.002024-06-29
CVE-2024-25943 [CRITICAL] CWE-330 CVE-2024-25943: iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generatio
iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking vulnerability in IPMI. A remote attacker could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable application.
nvd
CVE-2022-34435P4MEDIUMCVSS 4.9≤ 6.00.02.002023-01-18
CVE-2022-34435 [MEDIUM] CWE-20 CVE-2022-34435: Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Raca
Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. A remote high privileged attacker could exploit this vulnerability to bypass the firmware lock-down configuration and perform a firmware update.
nvd