Security Advisory

CVE-2018-15774

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-13 22:00:00

Last updated 2024-09-17 01:36:18

Assigner dell

State PUBLISHED

Description

Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 and iDRAC9 versions prior to 3.20.21.20, 3.21.24.22, 3.21.26.22, and 3.23.23.23 contain a privilege escalation vulnerability. An authenticated malicious iDRAC user with operator privileges could potentially exploit a permissions check flaw in the Redfish interface to gain administrator access.

← Browse all CVEs View on cve.org ↗