CVE-2021-36301
23.11.2021, 20:15
Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An authenticated remote attacker may potentially exploit this vulnerability to control process execution and gain access to the underlying operating system.Enginsight
| Vendor | Product | Version |
|---|---|---|
| dell | emc_idrac8_firmware | 𝑥 < 2.80.80.80 |
| dell | emc_idrac9_firmware | 𝑥 < 4.40.40.00 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-121 - Stack-based Buffer OverflowA stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.