Skip to main content
Start a Conversation

Solved!

Go to Solution

jdiazchtrse

1 Rookie

 • 

3 Posts

220

September 10th, 2024 16:22

Is iDRAC 7.00.00.173 affected by CVE-2024-38475?

CVE-2024-38475

Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected.  Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained.

After reviewing the license manifest for iDRAC 7.00.00.173 we have found that it runs apache 2.4.53, which is in the affected list of versions.

Is iDRAC affected, if so how do we mitigate this vulnerability.

DELL-Charles R

Moderator

 • 

4.5K Posts

September 18th, 2024 15:56

Hello,

 

I have this update:

 

Dell Security approved this response:

"Dell has assessed this security vulnerability and determined that iDRAC 9 is not vulnerable. "

DELL-Charles R

Moderator

 • 

4.5K Posts

September 10th, 2024 20:43

Hello,

 

I will look into this and follow up with you.

DELL-Charles R

Moderator

 • 

4.5K Posts

September 11th, 2024 14:26

Hello,

 

I sent CVE-2024-38475 up to our engineers to get a look and evaluate.

It may be a day or more before any update is available.

 

You may continue to check this web page:

Dell Security Advisories and Notices

https://www.dell.com/support/security/

jdiazchtrse

1 Rookie

 • 

3 Posts

September 17th, 2024 15:08

@DELL-Charles R Thanks for looking into this, just wanted to check in and see if the engineers had discovered anything yet. I have been reviewing the security advisories and have not found this CVE noted for iDRAC as of yet.

Any update on this CVE would be appreciated.

DELL-Charles R

Moderator

 • 

4.5K Posts

September 17th, 2024 15:48

Hello,

 

I checked with one of our Systems Management engineers and they let me know there is no update pertaining to the iDRAC at this time.

It is still being investigated.

 

Try continue periodically checking

Dell Security Advisories and Notices

https://www.dell.com/support/security/

jdiazchtrse

1 Rookie

 • 

3 Posts

September 18th, 2024 18:15

Thanks! This works for us.

user139578

1 Rookie

 • 

2 Posts

February 18th, 2025 01:14

Yes, iDRAC 7.00.00.173 is affected by CVE-2024-38475 because it runs Apache HTTP Server 2.4.53, which is vulnerable.

Was this post helpful?

View All

No Events found!

Top