漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. A remote authenticated attacker could potentially exploit this vulnerability to gain elevated privileges when a user with higher privileges is simultaneously accessing iDRAC through the web interface.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:L
Vulnerability Type
N/A
Vulnerability Title
Dell EMC iDRAC9 安全漏洞
Vulnerability Description
DELL Dell EMC iDRAC9是美国戴尔(DELL)公司的一套包含硬件和软件的系统管理解决方案。该方案为Dell PowerEdge系统提供远程管理、崩溃系统恢复和电源控制等功能。 Dell EMC iDRAC9 4.40.00.00 之前版本存在安全漏洞,远程身份验证的攻击者可利用该漏洞可能利用这个漏洞获得更高权限。
CVSS Information
N/A
Vulnerability Type
N/A