Vulnerabilities > Dell > EMC Idrac7

DATE CVE VULNERABILITY TITLE RISK
2018-03-23 CVE-2018-1211 Path Traversal vulnerability in Dell EMC Idrac7 and EMC Idrac8
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain a path traversal vulnerability in its Web server's URI parser which could be used to obtain specific sensitive data without authentication.
network
low complexity
dell CWE-22
7.5
7.5
2018-03-23 CVE-2018-1207 Code Injection vulnerability in Dell EMC Idrac7 and EMC Idrac8
Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code.
network
low complexity
dell CWE-94
critical
 9.8
9.8