CNNVD-202602-2158 Information
CNNVD ID
CNNVD-202602-2158
Related CVE
- CNNVD Published: 2026-02-12
Description (Chinese)
Dell iDRAC Service Module是美国戴尔(Dell)公司的一个轻量级的软件模块,设计用于在Dell PowerEdge服务器上运行,以增强iDRAC(Integrated Dell Remote Access Controller)的功能。 Dell iDRAC Service Module (iSM) for Windows 6.0.3.1之前版本和Dell iDRAC Service Module (iSM) for Linux 5.4.1.1之前版本存在访问控制错误漏洞,该漏洞源于访问控制不当,可能导致权限提升。
Description (English)
Dell iDRAC Service Modele, a lightweight software module of Dell Inc., was designed to operate on the Dell PowerEdge server to enhance the iDRAC (Integraded Dell Remote Access Consortium). There is an access control error loophole in the pre-Dell iDRAC Service Modeule (iSM) for Windows 6.2.3.1 and the pre-Dell iDRAC Service Modele (iSM) for Linux 5.4.1.1, which stems from inappropriate access controls, which may lead to increased access.
Vulnerability Type
访问控制错误
Affected Vendor
戴尔
Published
2026-02-12
Last Modified
2026-02-24