Vulnerabilities > Dell > EMC Idrac Service Module > 3.0.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-16 | CVE-2024-22428 | Incorrect Default Permissions vulnerability in Dell EMC Idrac Service Module Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escalate privileges and execute arbitrary code on the affected system. | 7.8 |
2018-06-26 | CVE-2018-11053 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Idrac Service Module Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. | 4.0 |