### [CVE-2018-15776](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15776)
![](https://img.shields.io/static/v1?label=Product&message=iDRAC&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=iDRAC72.61.60.60%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Error%20Handling%20Vulnerability.%20&color=brighgreen)

### Description

Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 contain an improper error handling vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to get access to the u-boot shell.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/Fohdeesha/idrac-7-8-reverse-engineering
- https://github.com/chnzzh/iDRAC-CVE-lib
- https://github.com/l4rz/reverse-engineering-dell-idrac-to-get-rid-of-gpu-throttling