vulnerability

Dell iDRAC: CVE-2021-36301: DSA-2021-177: Dell EMC iDRAC Security Update for Multiple Security Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	May 26, 2022	Nov 3, 2023	Nov 26, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

May 26, 2022

Added

Nov 3, 2023

Modified

Nov 26, 2025

Description

Dell iDRAC9 before version 4.40.40.00 and iDRAC8 before version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An authenticated remote attacker may potentially exploit this vulnerability to control process execution and gain access to the underlying operating system.

Solution

dell-idrac-upgrade-latest

References

https://www.dell.com/support/kbdoc/en-us/000191229/dsa-2021-177-dell-emc-idrac-security-update-for-multiple-security-vulnerabilities
CVE-2021-36301
https://attackerkb.com/topics/CVE-2021-36301
CWE-121
CWE-787

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report