First published: Tue Dec 11 2018(Updated: )
Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 contain an improper error handling vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to get access to the u-boot shell.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell Idrac7 Firmware | <2.61.60.60 | |
<2.61.60.60 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-15776 is an improper error handling vulnerability in Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60.
The severity of CVE-2018-15776 is medium with a severity value of 6.8.
An unauthenticated attacker with physical access to the system can potentially exploit CVE-2018-15776 to gain access to the u-boot shell.
Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 are affected by CVE-2018-15776.
To fix CVE-2018-15776, update your Dell EMC iDRAC7/iDRAC8 firmware to version 2.61.60.60 or later.