Medium severity6.5NVD Advisory· Published Jul 2, 2018· Updated Jun 17, 2026
CVE-2018-1249
CVE-2018-1249
Description
Dell EMC iDRAC9 versions prior to 3.21.21.21 did not enforce the use of TLS/SSL for a connection to iDRAC web server for certain URLs. A man-in-the-middle attacker could use this vulnerability to strip the SSL/TLS protection from a connection between a client and a server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- en.community.dell.com/techcenter/extras/m/white_papers/20487494nvdBroken LinkVendor Advisory
News mentions
0No linked articles in our index yet.