Denial of Service Vulnerability in Dell iDRAC 8
CVE-2021-36346

5.3MEDIUM

Key Information:

Vendor: Dell
Status: Integrated Dell Remote Access Controller (idrac)
Vendor: CVE Published:; 25 January 2022

Summary

A vulnerability exists in Dell iDRAC 8 that allows an unauthenticated remote attacker to potentially exploit a denial of service condition. This may prevent legitimate users from accessing the iDRAC web server, creating potential downtime and operational disruption. It is crucial for users of affected versions to apply necessary updates to mitigate this security risk.

Affected Version(s)

Integrated Dell Remote Access Controller (iDRAC) < 2.82.82.82

References

https://www.dell.com/support/kbdoc/en-us/000194038/dsa-20...

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 25, 2022
Vulnerability Reserved
Jul 8, 2021