Dell EMC iDRAC9 versions prior to 4.40.00.00 contain a DOM-based cross-site scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim application user to supply malicious HTML or JavaScript code to DOM environment in the browser. The malicious code is then executed by the web browser in the context of the vulnerable web application.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.dell.com/support/kbdoc/000185293 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: dell
Published: 2021-04-30T20:55:19.672496Z
Updated: 2024-09-16T17:38:25.537Z
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-21541
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-04-30T21:15:08.780
Modified: 2024-11-21T05:48:33.383
Link: CVE-2021-21541
Redhat
No data.