How severe is CVE-2021-21544?

CVE-2021-21544 has a CVSS v3 score of 2.7 (LOW).

CVE-2021-21544

Name: idrac9_firmware
Author: dell

2.7LOW

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability t

Опубликовано: 4/30/2021Обновлено: 11/21/2024

Описание

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability to manipulate the username field under the comment section and set the value to any user.

ИИ-АнализНа базе ИИ

Затронутые продукты

dellidrac9_firmware

Ссылки

https://www.dell.com/support/kbdoc/000185293
Vendor Advisory
https://www.dell.com/support/kbdoc/000185293
Vendor Advisory