Dell iDRAC9 version 6.00.02.00 and prior contain an improper input validation vulnerability in Racadm when the firmware lock-down configuration is set. A remote high privileged attacker could exploit this vulnerability to bypass the firmware lock-down configuration and perform a firmware update.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2023-01-18T11:07:45.399Z

Updated: 2024-08-03T09:07:16.249Z

Reserved: 2022-06-23T18:55:17.120Z

Link: CVE-2022-34435

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-01-18T12:15:10.427

Modified: 2023-11-07T03:48:41.357

Link: CVE-2022-34435

cve-icon Redhat

No data.