First published: Mon Apr 10 2017(Updated: )
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE.
Credit: cret@cert.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dell Integrated Remote Access Controller Firmware | <=2.20.20.20 | |
Dell Integrated Remote Access Controller 7 | ||
Dell Integrated Remote Access Controller 8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2015-7273 has a medium severity level due to the potential for XML External Entity (XXE) attacks.
To fix CVE-2015-7273, upgrade the Dell Integrated Remote Access Controller firmware to version 2.21.21.21 or higher.
The impact of CVE-2015-7273 includes the risk of unauthorized access to sensitive data through XML External Entity (XXE) vulnerabilities.
CVE-2015-7273 affects Dell Integrated Remote Access Controller firmware versions up to 2.20.20.20.
There is no official workaround for CVE-2015-7273; upgrading the firmware is the recommended solution.