Known Vulnerabilities for Idrac9 Firmware by Dell

Listed below are 10 of the newest known vulnerabilities associated with "Idrac9 Firmware" by "Dell".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-21544	Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicio...	2.7 - LOW	2021-04-30	2022-10-25
CVE-2021-21543	Dell EMC iDRAC9 versions prior to 4.40.00.00 contain multiple stored cross-site scripting vulnerabilities. A remote authentic...	4.8 - MEDIUM	2021-04-30	2021-05-10
CVE-2021-21542	Dell EMC iDRAC9 versions prior to 4.40.10.00 contain multiple stored cross-site scripting vulnerabilities. A remote authentic...	4.8 - MEDIUM	2021-04-30	2021-05-10
CVE-2021-21541	Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability. A remote unauthenticated...	6.1 - MEDIUM	2021-04-30	2021-05-10
CVE-2021-21540	Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. A remote authenticated attacker co...	8.1 - HIGH	2021-04-30	2022-10-24
CVE-2021-21539	Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. A rem...	7.1 - HIGH	2021-04-30	2021-05-10
CVE-2021-21538	Dell EMC iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.10.00, contain an improper authentication vulnerability. A r...	10 - CRITICAL	2021-07-29	2021-08-06
CVE-2020-26198	Dell EMC iDRAC9 versions prior to 4.32.10.00 and 4.40.00.00 contain a reflected cross-site scripting vulnerability in the iDR...	6.1 - MEDIUM	2020-12-16	2020-12-22
CVE-2020-5366	Dell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. A remote authenticated malicious user wi...	6.5 - MEDIUM	2020-07-09	2020-07-15
CVE-2020-5344	Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow...	9.8 - CRITICAL	2020-03-31	2020-04-03

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Dell	Idrac9 Firmware	4.20.20.20	All	All	All
Operating System	Dell	Idrac9 Firmware	4.00.00.00	All	All	All
Operating System	Dell	Idrac9 Firmware	3.42.42.42	All	All	All
Operating System	Dell	Idrac9 Firmware	3.40.40.40	All	All	All
Operating System	Dell	Idrac9 Firmware	3.36.36.36	All	All	All
Operating System	Dell	Idrac9 Firmware	3.34.34.34	All	All	All
Operating System	Dell	Idrac9 Firmware	3.32.32.32	All	All	All
Operating System	Dell	Idrac9 Firmware	3.31.31.31	All	All	All
Operating System	Dell	Idrac9 Firmware	3.30.30.30	All	All	All
Operating System	Dell	Idrac9 Firmware	3.24.24.24	All	All	All
Operating System	Dell	Idrac9 Firmware	3.23.23.23	All	All	All
Operating System	Dell	Idrac9 Firmware	3.22.22.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.26.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.25.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.24.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.23.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.21.22	All	All	All
Operating System	Dell	Idrac9 Firmware	3.21.21.21	All	All	All
Operating System	Dell	Idrac9 Firmware	3.20.21.20	All	All	All
Operating System	Dell	Idrac9 Firmware	3.20.20.20	All	All	All

Results limited to 20 most recent known configurations