Dell

Emc Idrac Service Module

9 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-38743

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 21.08.2025 18:46:41
  • Zuletzt bearbeitet 03.09.2025 16:22:35

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and El...

5.3

CVE-2025-38742

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 21.08.2025 18:42:34
  • Zuletzt bearbeitet 10.09.2025 15:56:11

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code exe...

4.4

CVE-2024-38490

  • EPSS 0.04%
  • Veröffentlicht 01.08.2024 08:15:03
  • Zuletzt bearbeitet 02.08.2024 13:54:51

Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.

4.4

CVE-2024-25948

  • EPSS 0.04%
  • Veröffentlicht 01.08.2024 08:15:02
  • Zuletzt bearbeitet 02.08.2024 13:55:42

Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.

4.4

CVE-2024-38481

  • EPSS 0.04%
  • Veröffentlicht 01.08.2024 08:15:02
  • Zuletzt bearbeitet 02.08.2024 13:54:44

Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Read Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.

4.4

CVE-2024-38489

  • EPSS 0.04%
  • Veröffentlicht 01.08.2024 08:15:02
  • Zuletzt bearbeitet 02.08.2024 13:54:55

Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service (partial) event.

4.4

CVE-2024-25947

  • EPSS 0.04%
  • Veröffentlicht 01.08.2024 07:15:02
  • Zuletzt bearbeitet 02.08.2024 13:55:39

Dell iDRAC Service Module version 5.3.0.0 and prior, contain an Out of bound Read Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.

7.8

CVE-2024-22428

  • EPSS 0.05%
  • Veröffentlicht 16.01.2024 04:15:08
  • Zuletzt bearbeitet 21.11.2024 08:56:16

Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escalate privileges and execute arbitrary code on the affected system. Dell recommends customers...

6.5

CVE-2018-11053

  • EPSS 0.1%
  • Veröffentlicht 26.06.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:34

Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating system (/etc/hosts) to world writable. A malicious ...