CVE-2018-1207

high-risk

Published 2018-03-23

Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code. A remote unauthenticated attacker may potentially be able to use CGI variables to execute remote code.

Do I need to act?

93.8% chance of exploitation in next 30 days

EPSS score — higher than 6% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

52246

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (2)

Emc Idrac7

Emc Idrac8

Affected Vendors

Dell

References (6)

Vendor Advisory http://en.community.dell.com/techcenter/extras/m/white_papers/20485410

Third Party Advisory http://www.securityfocus.com/bid/103694

Third Party Advisory https://twitter.com/nicowaisman/status/977279766792466432

Vendor Advisory http://en.community.dell.com/techcenter/extras/m/white_papers/20485410

Third Party Advisory http://www.securityfocus.com/bid/103694

Third Party Advisory https://twitter.com/nicowaisman/status/977279766792466432

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 20/34 · Moderate

Exposure 7/34 · Low