Vulnerability Details CVE-2020-5344
Dell EMC iDRAC7, iDRAC8 and iDRAC9 versions prior to 2.65.65.65, 2.70.70.70, 4.00.00.00 contain a stack-based buffer overflow vulnerability. An unauthenticated remote attacker may exploit this vulnerability to crash the affected process or execute arbitrary code on the system by sending specially crafted input data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.09
EPSS Ranking 92.2%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 10.0
References
Products affected by CVE-2020-5344
-
cpe:2.3:h:dell:idrac7:-
-
cpe:2.3:h:dell:idrac8:-
-
cpe:2.3:h:dell:idrac9:-
-
cpe:2.3:o:dell:idrac7_firmware:1.00.00
-
cpe:2.3:o:dell:idrac7_firmware:1.06.06
-
cpe:2.3:o:dell:idrac7_firmware:1.10.10
-
cpe:2.3:o:dell:idrac7_firmware:1.20.20
-
cpe:2.3:o:dell:idrac7_firmware:1.23.23
-
cpe:2.3:o:dell:idrac7_firmware:1.37.35
-
cpe:2.3:o:dell:idrac7_firmware:1.40.40
-
cpe:2.3:o:dell:idrac7_firmware:2.30.30.30
-
cpe:2.3:o:dell:idrac7_firmware:2.61.60.60
-
cpe:2.3:o:dell:idrac8_firmware:2.00.00.00
-
cpe:2.3:o:dell:idrac8_firmware:2.30.30.30
-
cpe:2.3:o:dell:idrac8_firmware:2.52.52.52
-
cpe:2.3:o:dell:idrac8_firmware:2.60.60.60
-
cpe:2.3:o:dell:idrac8_firmware:2.61.60.60
-
cpe:2.3:o:dell:idrac9_firmware:3.00.00.00
-
cpe:2.3:o:dell:idrac9_firmware:3.11.11.11
-
cpe:2.3:o:dell:idrac9_firmware:3.15.15.15
-
cpe:2.3:o:dell:idrac9_firmware:3.15.17.15
-
cpe:2.3:o:dell:idrac9_firmware:3.15.19.15
-
cpe:2.3:o:dell:idrac9_firmware:3.16.16.16
-
cpe:2.3:o:dell:idrac9_firmware:3.17.17.17
-
cpe:2.3:o:dell:idrac9_firmware:3.17.18.17
-
cpe:2.3:o:dell:idrac9_firmware:3.17.20.17
-
cpe:2.3:o:dell:idrac9_firmware:3.18.18.18
-
cpe:2.3:o:dell:idrac9_firmware:3.19.19.19
-
cpe:2.3:o:dell:idrac9_firmware:3.20.20.20
-
cpe:2.3:o:dell:idrac9_firmware:3.20.21.20
-
cpe:2.3:o:dell:idrac9_firmware:3.21.21.21
-
cpe:2.3:o:dell:idrac9_firmware:3.21.21.22
-
cpe:2.3:o:dell:idrac9_firmware:3.21.23.22
-
cpe:2.3:o:dell:idrac9_firmware:3.21.24.22
-
cpe:2.3:o:dell:idrac9_firmware:3.21.25.22
-
cpe:2.3:o:dell:idrac9_firmware:3.21.26.22
-
cpe:2.3:o:dell:idrac9_firmware:3.22.22.22
-
cpe:2.3:o:dell:idrac9_firmware:3.23.23.23
-
cpe:2.3:o:dell:idrac9_firmware:3.24.24.24
-
cpe:2.3:o:dell:idrac9_firmware:3.30.30.30
-
cpe:2.3:o:dell:idrac9_firmware:3.31.31.31
-
cpe:2.3:o:dell:idrac9_firmware:3.32.32.32
-
cpe:2.3:o:dell:idrac9_firmware:3.34.34.34
-
cpe:2.3:o:dell:idrac9_firmware:3.36.36.36
-
cpe:2.3:o:dell:idrac9_firmware:3.40.40.40
-
cpe:2.3:o:dell:idrac9_firmware:3.42.42.42