Unrated severityNVD Advisory· Published Dec 19, 2014· Updated Jun 17, 2026
CVE-2014-8272
CVE-2014-8272
Description
The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65, iDRAC6 monolithic before 1.98, and iDRAC7 before 1.57.57 does not properly select session ID values, which makes it easier for remote attackers to execute arbitrary commands via a brute-force attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:dell:idrac6_modular:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:dell:idrac6_modular:*:*:*:*:*:*:*:*range: <=3.60
- (no CPE)range: <3.65
cpe:2.3:a:dell:idrac6_monolithic:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:dell:idrac6_monolithic:*:*:*:*:*:*:*:*range: <=1.97
- (no CPE)range: <1.98
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/35770nvdExploit
- www.kb.cert.org/vuls/id/843044nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/BLUU-9RDQHMnvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.