CVE-2021-21585

Name of the Vulnerable Software and Affected Versions Dell OpenManage Enterprise versions prior to 3.6.1

Description The issue concerns an OS command injection vulnerability in RACADM and IPMI tools. A remote authenticated malicious user with high privileges may potentially exploit this vulnerability to execute arbitrary OS commands.

Recommendations For Dell OpenManage Enterprise versions prior to 3.6.1, update to version 3.6.1 or later to resolve the issue. As a temporary workaround, consider restricting access to RACADM and IPMI tools to minimize the risk of exploitation.