CVE-2025-22397

>= 6.10.80.00 and < 7.00.00.181

Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181, 15G and 16G versions 6.10.80.00 through 7.20.1

6.7MEDIUM

CVE-2025-26482

< 7.00.00.181

Dell PowerEdge Server BIOS and Dell iDRAC9, all versions, contains an Information Disclosure vulnerability. A high privileged atta

4.9MEDIUM

CVE-2022-34435

< 6.00.30.00

Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down

2.7LOW

CVE-2021-21538

>= 4.40.00.00 and < 4.40.10.00

Dell EMC iDRAC9 versions 4.40.00.00 and later, but prior to 4.40.10.00, contain an improper authentication vulnerability. A remote

9.6CRITICAL

CVE-2021-21544

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain an improper authentication vulnerability. A remote authenticated malicious us

2.7LOW

CVE-2021-21543

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain multiple stored cross-site scripting vulnerabilities. A remote authenticated

4.8MEDIUM

CVE-2021-21542

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.10.00 contain multiple stored cross-site scripting vulnerabilities. A remote authenticated

4.8MEDIUM

CVE-2021-21541

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability. A remote unauthenticated atta

6.1MEDIUM

CVE-2021-21540

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a stack-based overflow vulnerability. A remote authenticated attacker could p

5.9MEDIUM

CVE-2021-21539

< 4.40.00.00

Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. A remote a

5.9MEDIUM

CVE-2020-26198

<= 4.32.10.00

Dell EMC iDRAC9 versions prior to 4.32.10.00 and 4.40.00.00 contain a reflected cross-site scripting vulnerability in the iDRAC9 w

6.1MEDIUM

CVE-2020-5366

< 4.20.20.20

Dell EMC iDRAC9 versions prior to 4.20.20.20 contain a Path Traversal Vulnerability. A remote authenticated malicious user with lo

7.1HIGH

CVE-2020-5344

< 4.00.00.00

Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vuln

7.0HIGH

CVE-2019-3764

< 3.36.36.36

Dell EMC iDRAC7 versions prior to 2.65.65.65, iDRAC8 versions prior to 2.70.70.70 and iDRAC9 versions prior to 3.36.36.36 contain

4.3MEDIUM

CVE-2019-3707

< 3.30.30.30

Dell EMC iDRAC9 versions prior to 3.30.30.30 contain an authentication bypass vulnerability. A remote attacker may potentially exp

8.6HIGH

CVE-2019-3706

all versions

Dell EMC iDRAC9 versions prior to 3.24.24.24, 3.21.26.22, 3.22.22.22 and 3.21.25.22 contain an authentication bypass vulnerability

8.6HIGH

CVE-2019-3705

< 3.20.21.20

Dell EMC iDRAC6 versions prior to 2.92, iDRAC7/iDRAC8 versions prior to 2.61.60.60, and iDRAC9 versions prior to 3.20.21.20, 3.21.

9.8CRITICAL

CVE-2018-15774

< 3.20.21.20

Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 and iDRAC9 versions prior to 3.20.21.20, 3.21.24.22, 3.21.26.22, and 3.23.23.2

3.8LOW

CVE-2018-1249

< 3.21.21.21

Dell EMC iDRAC9 versions prior to 3.21.21.21 did not enforce the use of TLS/SSL for a connection to iDRAC web server for certain U

6.5MEDIUM

CVE-2018-1244

< 3.21.21.21

Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 versions prior to 3.21.21.21 contain a command injection vulnerab

8.8HIGH

CVE-2018-1243

< 3.21.21.21

Dell EMC iDRAC6, versions prior to 2.91, iDRAC7/iDRAC8, versions prior to 2.60.60.60 and iDRAC9, versions prior to 3.21.21.21, con

7.5HIGH