#VU66213 Stack-based buffer overflow in iDRAC9 - CVE-2021-21540

Cybersecurity Help s.r.o.

Published: 2022-08-09

Vulnerability identifier: #VU66213

Vulnerability risk: Medium

CVSSv4.0: 5.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-21540

CWE-ID: CWE-121

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
iDRAC9
Web applications / Remote management & hosting panels

Vendor: Dell

Description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when #CONDITION1#. A remote user can exploit this vulnerability to overwrite configuration information by injecting arbitrarily large payload.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

iDRAC9: 2.65.65.65 - 4.40.35.00

External links
https://www.dell.com/support/kbdoc/000185293

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Dell Data Domain

Multiple vulnerabilities in Dell iDRAC9