Číslo článku: 000199267
Critical
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24422 | Dell iDRAC9 versions 5.00.00.00 and later but before 5.10.10.00, contain an improper authentication vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access to the VNC Console. | 9.6 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
| Proprietary Code CVE | Description | CVSS Base Score | CVSS Vector String |
| CVE-2022-24422 | Dell iDRAC9 versions 5.00.00.00 and later but before 5.10.10.00, contain an improper authentication vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to gain access to the VNC Console. | 9.6 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell iDRAC9 | Versions 5.00.00.00 and later but before 5.10.10.00 | 5.10.10.00 | https://www.dell.com/support/home/drivers/driversdetails?driverid=fptf1 |
| Product | Affected Versions | Updated Versions | Link to Update |
| Dell iDRAC9 | Versions 5.00.00.00 and later but before 5.10.10.00 | 5.10.10.00 | https://www.dell.com/support/home/drivers/driversdetails?driverid=fptf1 |
Dell would like to thank Christian Mock from CoreTEC for reporting this issue.
| Revision | Date | Description |
| 1.0 | 2022-05-11 | Initial Release |
iDRAC9, iDRAC9 - 5.xx Series, Product Security Information
11 máj 2022
Dell Security Advisory