CVE-2026-28262
MediumCVSS 6.0Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.
Risk Assessment
This vulnerability could lead to unauthorized data modification, posing a threat to system integrity.
Recommendation
It is recommended to update Dell iDRAC Tools to version 11.4.1.0 or newer to mitigate this vulnerability.
Original NVD description (English source)
Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.

