9.8
CVSSv3

CVE-2019-3706

Published: 26/04/2019 Updated: 24/08/2020
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Dell EMC iDRAC9 versions before 3.24.24.24, 3.21.26.22, 3.22.22.22 and 3.21.25.22 contain an authentication bypass vulnerability. A remote attacker may potentially exploit this vulnerability to bypass authentication and gain access to the system by sending specially crafted data to the iDRAC web interface.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

dell idrac9 firmware 3.20.21.20

dell idrac9 firmware 3.23.23.23

dell idrac9 firmware 3.21.24.22

Mailing Lists

Restricted - Confidential -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 DSA-2019-025: RSA Archer GRC Platform Multiple Vulnerabilities Dell EMC Identifier: DSA-2019-025 CVE Identifier: CVE-2019-3705, CVE-2019-3706 Severity Rating: See below for scores of individual CVEs Affected Products: RSA Archer versions prior to 65 P1 (CVE-2019-370 ...