Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to DOM environment in the browser. The malicious code is then executed by the web browser in the context of the vulnerable web application.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2021-04-30T20:55:19.672496Z

Updated: 2024-09-16T17:38:25.537Z

Reserved: 2021-01-04T00:00:00

Link: CVE-2021-21541

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-04-30T21:15:08.780

Modified: 2021-05-10T17:06:02.647

Link: CVE-2021-21541

cve-icon Redhat

No data.