CVE-2022-24423
Description
Dell iDRAC8 versions prior to 2.83.83.83 contain a denial of service vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to cause resource exhaustion in the webserver, resulting in a denial of service condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Dell iDRAC8 prior to 2.83.83.83 has a DoS vulnerability allowing remote unauthenticated attackers to exhaust webserver resources.
Vulnerability
CVE-2022-24423 is a denial of service vulnerability in Dell iDRAC8 versions prior to 2.83.83.83. The issue resides in the webserver component and can be triggered remotely without authentication, leading to resource exhaustion [1].
Exploitation
An attacker with network access to the iDRAC8 interface can exploit this vulnerability by sending a series of specially crafted requests. No authentication or user interaction is required, and the attack does not require any special privileges [1].
Impact
Successful exploitation results in resource exhaustion of the webserver, causing a denial of service condition. This affects the availability of the iDRAC management interface, but does not compromise confidentiality or integrity [1].
Mitigation
Dell released iDRAC8 version 2.83.83.83 on April 11, 2022 to address this vulnerability. Users should upgrade to this version or later. No workarounds are available [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.dell.com/support/kbdoc/en-us/000198064/dsa-2022-069mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.