CVE Catalog

CVE-2026-28262

MediumCVSS 6.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.

Risk Assessment

This vulnerability could lead to unauthorized data modification, posing a threat to system integrity.

Recommendation

It is recommended to update Dell iDRAC Tools to version 11.4.1.0 or newer to mitigate this vulnerability.

Original NVD description (English source)

Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS