CVE-2021-36346
CVE-2021-36346
In short
Dell iDRAC 8 versions before 2.82.82.82 have a flaw that allows an attacker without authentication to shut down or make the management web interface unavailable, disrupting remote server management.
Technical detail
An unauthenticated remote attacker can send crafted requests to the iDRAC 8 webserver (pre-authentication vector) to trigger a denial of service condition, rendering the iDRAC management interface inaccessible. This affects versions prior to 2.82.82.82 and impacts server management availability.
Summary generated and translated by AI from the official description.
Dell iDRAC 8 prior to version 2.82.82.82 contain a denial of service vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to deny access to the iDRAC webserver.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
Dell · Integrated Dell Remote Access Controller (iDRAC)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →