cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-1243,https://securityvulnerability.io/vulnerability/CVE-2018-1243,iDRAC6/iDRAC7/iDRAC8 - Weak CGI session ID vulnerability,"Dell EMC iDRAC6, versions prior to 2.91, iDRAC7/iDRAC8, versions prior to 2.60.60.60 and iDRAC9, versions prior to 3.21.21.21, contain a weak CGI session ID vulnerability. The sessions invoked via CGI binaries use 96-bit numeric-only session ID values, which makes it easier for remote attackers to perform bruteforce session guessing attacks.",Dell,"Idrac6,Idrac7,Idrac8",7.5,HIGH,0.0027199999894946814,false,,false,false,false,,,false,false,,2018-07-02T17:29:00.000Z,0
CVE-2018-1244,https://securityvulnerability.io/vulnerability/CVE-2018-1244,iDRAC7/iDRAC8/iDrac9 contains a command injection vulnerability in the SNMP agent.,"Dell EMC iDRAC7/iDRAC8, versions prior to 2.60.60.60, and iDRAC9 versions prior to 3.21.21.21 contain a command injection vulnerability in the SNMP agent. A remote authenticated malicious iDRAC user with configuration privileges could potentially exploit this vulnerability to execute arbitrary commands on the iDRAC where SNMP alerting is enabled.",Dell,"Idrac7,Idrac8,Idrac9",8.8,HIGH,0.001019999966956675,false,,false,false,false,,,false,false,,2018-07-02T17:29:00.000Z,0
CVE-2018-1207,https://securityvulnerability.io/vulnerability/CVE-2018-1207,,"Dell EMC iDRAC7/iDRAC8, versions prior to 2.52.52.52, contain CGI injection vulnerability which could be used to execute remote code. A remote unauthenticated attacker may potentially be able to use CGI variables to execute remote code.",Dell,"Emc Idrac8,Emc Idrac7",9.8,CRITICAL,0.033980000764131546,false,,false,false,true,2023-02-10T19:06:50.000Z,true,false,false,,2018-03-23T14:00:00.000Z,0
CVE-2016-5685,https://securityvulnerability.io/vulnerability/CVE-2016-5685,,Dell iDRAC7 and iDRAC8 devices with firmware before 2.40.40.40 allow authenticated users to gain Bash shell access through a string injection.,Dell,Idrac7 And Idrac8,8.8,HIGH,0.0009299999801442027,false,,false,false,false,,,false,false,,2016-11-29T15:00:00.000Z,0