5.3
CVE-2025-38742
- EPSS 0.02%
- Veröffentlicht 21.08.2025 18:42:34
- Zuletzt bearbeitet 10.09.2025 15:56:11
- Quelle security_alert@emc.com
- CVE-Watchlists
- Unerledigt
LoginDell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dell ≫ Emc Idrac Service Module Version < 6.0.3.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.026 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security_alert@emc.com | 5.3 | 1.8 | 3.4 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
|
CWE-732 Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.