#VU17811 Security restrictions bypass in iDRAC8 and iDRAC7 - CVE-2015-7271

Cybersecurity Help s.r.o.

Published: 2019-02-21

Vulnerability identifier: #VU17811

Vulnerability risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2015-7271

CWE-ID: CWE-264

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
iDRAC8
Web applications / Remote management & hosting panels
iDRAC7
Web applications / Remote management & hosting panels

Vendor: Dell

Description
The vulnerability allows a remote attacker to bypass security restrictions.

The weakness exists due to a format string issue in racadm getsystinfo. A remote attacker can bypass security restrictions and conduct further attacks.

Mitigation
Install update from vendor's website.

Vulnerable software versions

iDRAC8: 2.00.00.00 - 2.20.20.20

iDRAC7: 2.10.10.10 - 2.20.20.20

External links
https://downloads.dell.com/solutions/dell-management-solution-resources/Dell%20iDRAC%20Response%20to...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell EMC iDRAC