Vulnerabilities > Dell > Idrac9 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-18 | CVE-2022-34435 | Improper Input Validation vulnerability in Dell Idrac9 Firmware Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. | 4.9 |
| 2021-07-29 | CVE-2021-21538 | Improper Authentication vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.10.00, contain an improper authentication vulnerability. | 7.5 |
| 2021-04-30 | CVE-2021-21540 | Out-of-bounds Write vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. | 8.1 |
| 2021-04-30 | CVE-2021-21539 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. | 4.6 |
| 2021-04-30 | CVE-2021-21544 | Improper Authentication vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. | 2.7 |
| 2021-04-30 | CVE-2021-21543 | Cross-site Scripting vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain multiple stored cross-site scripting vulnerabilities. | 3.5 |
| 2021-04-30 | CVE-2021-21542 | Cross-site Scripting vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.10.00 contain multiple stored cross-site scripting vulnerabilities. | 3.5 |
| 2021-04-30 | CVE-2021-21541 | Cross-site Scripting vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability. | 4.3 |
| 2020-12-16 | CVE-2020-26198 | Cross-site Scripting vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.32.10.00 and 4.40.00.00 contain a reflected cross-site scripting vulnerability in the iDRAC9 web application. | 4.3 |
| 2020-07-09 | CVE-2020-5366 | Path Traversal vulnerability in Dell Idrac9 Firmware Dell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. | 4.0 |