vulnerability

Dell iDRAC: CVE-2021-36300: DSA-2021-177: Dell EMC iDRAC Security Update for Multiple Security Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:N/C:P/I:N/A:P)	May 26, 2022	Nov 3, 2023	Nov 26, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:P)

Published

May 26, 2022

Added

Nov 3, 2023

Modified

Nov 26, 2025

Description

iDRAC9 versions before 5.00.00.00 contain an improper input validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability by sending a specially crafted malicious request to make the webserver unresponsive or cause information disclosure.

Solution

dell-idrac-upgrade-latest

References

https://www.dell.com/support/kbdoc/en-us/000191229/dsa-2021-177-dell-emc-idrac-security-update-for-multiple-security-vulnerabilities
CVE-2021-36300
https://attackerkb.com/topics/CVE-2021-36300
CWE-89

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report