PT-2018-10986 · Dell Emc · Idrac8+1

Published

2018-03-23

Updated

2026-01-22

CVE-2018-1207

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell EMC iDRAC7/iDRAC8 versions prior to 2.52.52.52

Description The issue allows a remote unauthenticated attacker to potentially execute remote code using CGI variables.

Recommendations For versions prior to 2.52.52.52, update to version 2.52.52.52 or later to resolve the issue.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2018-1207

Idrac7

Idrac8