Vulnerability identifier: #VU12103
Vulnerability risk: Low
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote authenticated attacker to execute arbitrary commands on the target system.
The weakness exists due to a string injection. A remote attacker can gain Bash shell access and execute arbitrary commands.
Update to version 188.8.131.52.
Vulnerable software versions
iDRAC8: 2.00.00.00 - 184.108.40.206
iDRAC7: 220.127.116.11 - 18.104.22.168
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?