Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    12 vulnerabilities found for integrated_remote_access_controller_firmware by dell

    CVE-2015-7275 (GCVE-0-2015-7275)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS.
    Severity
    No CVSS data available.
    CWE
    • XSS
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.112Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97520",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97520"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "XSS",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-11T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97520",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97520"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7275",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "XSS"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97520",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97520"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7275",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7274 (GCVE-0-2015-7274)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands.
    Severity
    No CVSS data available.
    CWE
    • privilege escalation
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.117Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97546",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97546"
              },
              {
                "name": "97545",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97545"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "privilege escalation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-12T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97546",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97546"
            },
            {
              "name": "97545",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97545"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7274",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "privilege escalation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97546",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97546"
                },
                {
                  "name": "97545",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97545"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7274",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.117Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7273 (GCVE-0-2015-7273)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE.
    Severity
    No CVSS data available.
    CWE
    • XXE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.168Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "XXE",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-10T02:57:02.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7273",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "XXE"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7273",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.168Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7272 (GCVE-0-2015-7272)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input.
    Severity
    No CVSS data available.
    CWE
    • DoS
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.058Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "97532",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97532"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "DoS",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-12T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "name": "97532",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97532"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7272",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "DoS"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "97532",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97532"
                },
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7272",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.058Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7271 (GCVE-0-2015-7271)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo.
    Severity
    No CVSS data available.
    CWE
    • format string
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.101Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97561",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97561"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "format string",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-13T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97561",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97561"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7271",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "format string"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97561",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97561"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7271",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.101Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7270 (GCVE-0-2015-7270)

    Vulnerability from nvd – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal.
    Severity
    No CVSS data available.
    CWE
    • directory traversal
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.118Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "97521",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97521"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "directory traversal",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-11T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "name": "97521",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97521"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7270",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "directory traversal"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "97521",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97521"
                },
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7270",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.118Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7270 (GCVE-0-2015-7270)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal.
    Severity
    No CVSS data available.
    CWE
    • directory traversal
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.118Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "97521",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97521"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "directory traversal",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-11T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "name": "97521",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97521"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7270",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "directory traversal"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "97521",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97521"
                },
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7270",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.118Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7272 (GCVE-0-2015-7272)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input.
    Severity
    No CVSS data available.
    CWE
    • DoS
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.058Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "97532",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97532"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "DoS",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-12T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "name": "97532",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97532"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7272",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "DoS"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "97532",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97532"
                },
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7272",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.058Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7271 (GCVE-0-2015-7271)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo.
    Severity
    No CVSS data available.
    CWE
    • format string
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.101Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97561",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97561"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "format string",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-13T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97561",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97561"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7271",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "format string"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97561",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97561"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7271",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.101Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7273 (GCVE-0-2015-7273)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE.
    Severity
    No CVSS data available.
    CWE
    • XXE
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.168Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "XXE",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-10T02:57:02.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7273",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "XXE"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7273",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.168Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7274 (GCVE-0-2015-7274)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands.
    Severity
    No CVSS data available.
    CWE
    • privilege escalation
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.117Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97546",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97546"
              },
              {
                "name": "97545",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97545"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "privilege escalation",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-12T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97546",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97546"
            },
            {
              "name": "97545",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97545"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7274",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "privilege escalation"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97546",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97546"
                },
                {
                  "name": "97545",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97545"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7274",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.117Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2015-7275 (GCVE-0-2015-7275)

    Vulnerability from cvelistv5 – Published: 2017-04-10 03:00 – Updated: 2024-08-06 07:43
    VLAI
    Summary
    Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS.
    Severity
    No CVSS data available.
    CWE
    • XSS
    Assigner
    References
    Impacted products
    Vendor Product Version
    n/a Dell Integrated Remote Access Controller (iDRAC) Affected: Dell Integrated Remote Access Controller (iDRAC)
    Date Public
    2017-04-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T07:43:46.112Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
              },
              {
                "name": "97520",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/97520"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Dell Integrated Remote Access Controller (iDRAC)",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "Dell Integrated Remote Access Controller (iDRAC)"
                }
              ]
            }
          ],
          "datePublic": "2017-04-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "XSS",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-04-11T09:57:01.000Z",
            "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
            "shortName": "certcc"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
            },
            {
              "name": "97520",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/97520"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cert@cert.org",
              "ID": "CVE-2015-7275",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Dell Integrated Remote Access Controller (iDRAC)",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "Dell Integrated Remote Access Controller (iDRAC)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "XSS"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859",
                  "refsource": "MISC",
                  "url": "http://en.community.dell.com/techcenter/extras/m/white_papers/20441859"
                },
                {
                  "name": "97520",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/97520"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "assignerShortName": "certcc",
        "cveId": "CVE-2015-7275",
        "datePublished": "2017-04-10T03:00:00.000Z",
        "dateReserved": "2015-09-18T00:00:00.000Z",
        "dateUpdated": "2024-08-06T07:43:46.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }