Vulnerabilities > Dell > EMC Idrac Service Module > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-01 CVE-2024-25948 Out-of-bounds Write vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability.
local
low complexity
dell CWE-787
4.4
4.4
2024-08-01 CVE-2024-38481 Out-of-bounds Read vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Read Vulnerability.
local
low complexity
dell CWE-125
4.4
4.4
2024-08-01 CVE-2024-38489 Out-of-bounds Write vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability.
local
low complexity
dell CWE-787
4.4
4.4
2024-08-01 CVE-2024-38490 Out-of-bounds Write vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability.
local
low complexity
dell CWE-787
4.4
4.4
2024-08-01 CVE-2024-25947 Out-of-bounds Write vulnerability in Dell EMC Idrac Service Module
Dell iDRAC Service Module version 5.3.0.0 and prior, contain an Out of bound Read Vulnerability.
local
low complexity
dell CWE-787
4.4
4.4
2018-06-26 CVE-2018-11053 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Idrac Service Module
Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable.
network
low complexity
dell CWE-732
6.5
6.5