Free Trial

CVE-2024-25943 : DELL INTEGRATED REMOTE ACCESS CONTROLLER 9 PRIOR 7.00.00.172/7.10.50.00 RANDOM VALUES

Description

iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking vulnerability in IPMI. A remote attacker could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable application.

References

https://www.dell.com/support/kbdoc/en-us/000226503/dsa-2024-099-security-update-for-dell-idrac9-ipmi-session-vulnerability

For More Information

CVERecord

Common Vulnerabilityies and Exposures

CVE-2024-25943 : DELL INTEGRATED REMOTE ACCESS CONTROLLER 9 PRIOR 7.00.00.172/7.10.50.00 RANDOM VALUES
CVE-2024-25943 : DELL INTEGRATED REMOTE ACCESS CONTROLLER 9 PRIOR 7.00.00.172/7.10.50.00 RANDOM VALUES

Contact us to get started

CVE-2024-39891 : TWILIO AUTHY ON ANDROID/IOS API IMPROPER AUTHENTICATION

CVE-2024-39891 : TWILIO AUTHY ON ANDROID/IOS API IMPROPER AUTHENTICATION

Description In the Twilio Authy API, accessed by Authy Android before 25.1.0 and Authy iOS before 26.1.0, an unauthenticated endpoint

Learn more
CVE-2022-30636 : X-CRYPTO PRIOR 0.0.0-20220525230936-793AD666BF5E ON GO PATH TRAVERSAL

CVE-2022-30636 : X-CRYPTO PRIOR 0.0.0-20220525230936-793AD666BF5E ON GO PATH TRAVERSAL

Description httpTokenCacheKey uses path.Base to extract the expected HTTP-01 token value to lookup in the DirCache implementation. On Windows, path.Base

Learn more
CVE-2023-24531 : CMD-GO UP TO 1.20.X ON GO SPECIAL ELEMENT

CVE-2023-24531 : CMD-GO UP TO 1.20.X ON GO SPECIAL ELEMENT

Description Command go env is documented as outputting a shell script containing the Go environment. However, go env doesn’t sanitize

Learn more