CVE-2021-21579

Name of the Vulnerable Software and Affected Versions Dell EMC iDRAC9 versions prior to 4.40.40.00

Description The issue allows a remote unauthenticated attacker to redirect users to arbitrary web URLs by tricking victim users into clicking on maliciously crafted links. This is achieved through an open redirect vulnerability.

Recommendations For versions prior to 4.40.40.00, update to version 4.40.40.00 or later to resolve the issue. As a temporary workaround, consider restricting access to the iDRAC9 interface to minimize the risk of exploitation. Avoid clicking on suspicious links from untrusted sources to reduce the risk of being redirected to malicious websites.