How severe is CVE-2021-21544?

CVE-2021-21544 has a CVSS v3 score of 2.7 (LOW).

CVE-2021-21544

Name: idrac9_firmware
Author: dell

2.7LOW

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability t

Veröffentlicht: 4/30/2021Aktualisiert: 11/21/2024

Beschreibung

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability to manipulate the username field under the comment section and set the value to any user.

KI-AnalyseKI-gestützt

Betroffene Produkte

dellidrac9_firmware

Referenzen

https://www.dell.com/support/kbdoc/000185293
Vendor Advisory
https://www.dell.com/support/kbdoc/000185293
Vendor Advisory