{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23856", "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "state": "PUBLISHED", "assignerShortName": "dell", "dateReserved": "2026-01-16T18:05:07.319Z", "datePublished": "2026-02-12T01:46:53.858Z", "dateUpdated": "2026-02-26T14:44:22.068Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "iDRAC Service Module", "vendor": "Dell", "versions": [{"lessThan": "5.4.1.1", "status": "affected", "version": "N/A", "versionType": "semver"}, {"lessThan": "6.0.3.1", "status": "affected", "version": "N/A", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "product": "iDRAC Service Module for Linux", "vendor": "Dell", "versions": [{"lessThan": "5.4.1.1", "status": "affected", "version": "N/A", "versionType": "semver"}]}], "datePublic": "2026-02-09T18:30:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.<br>"}], "value": "Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "description": "CWE-284: Improper Access Control", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell", "dateUpdated": "2026-02-12T01:46:53.858Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.dell.com/support/kbdoc/en-us/000426282/dsa-2026-077-security-update-for-dell-idrac-service-module-vulnerability"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23856", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-13T04:56:37.906427Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:44:22.068Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23856", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-13T04:56:37.906427Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-12T15:34:14.239Z"}}], "cna": {"source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Dell", "product": "iDRAC Service Module", "versions": [{"status": "affected", "version": "N/A", "lessThan": "5.4.1.1", "versionType": "semver"}, {"status": "affected", "version": "N/A", "lessThan": "6.0.3.1", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Dell", "product": "iDRAC Service Module for Linux", "versions": [{"status": "affected", "version": "N/A", "lessThan": "5.4.1.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "datePublic": "2026-02-09T18:30:00.000Z", "references": [{"url": "https://www.dell.com/support/kbdoc/en-us/000426282/dsa-2026-077-security-update-for-dell-idrac-service-module-vulnerability", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.", "supportingMedia": [{"type": "text/html", "value": "Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284: Improper Access Control"}]}], "providerMetadata": {"orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell", "dateUpdated": "2026-02-12T01:46:53.858Z"}}}, "cveMetadata": {"cveId": "CVE-2026-23856", "state": "PUBLISHED", "dateUpdated": "2026-02-26T14:44:22.068Z", "dateReserved": "2026-01-16T18:05:07.319Z", "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "datePublished": "2026-02-12T01:46:53.858Z", "assignerShortName": "dell"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Dell iDRAC Service Module (iSM) for Windows, versions prior to 6.0.3.1, and Dell iDRAC Service Module (iSM) for Linux, versions prior to 5.4.1.1, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges."}, {"lang": "es", "value": "Dell iDRAC Service Module (iSM) para Windows, versiones anteriores a la 6.0.3.1, y Dell iDRAC Service Module (iSM) para Linux, versiones anteriores a la 5.4.1.1, contienen una vulnerabilidad de control de acceso inadecuado. Un atacante con privilegios bajos con acceso local podr\u00eda potencialmente explotar esta vulnerabilidad, lo que llevar\u00eda a una elevaci\u00f3n de privilegios."}], "id": "CVE-2026-23856", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "security_alert@emc.com", "type": "Secondary"}]}, "published": "2026-02-12T03:15:46.833", "references": [{"source": "security_alert@emc.com", "url": "https://www.dell.com/support/kbdoc/en-us/000426282/dsa-2026-077-security-update-for-dell-idrac-service-module-vulnerability"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "security_alert@emc.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,5.4.1.1)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,6.0.3.1)"}}], "product": "idrac_service_module", "vendor": "dell"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,5.4.1.1)"}}], "product": "idrac_service_module", "vendor": "dell"}], "analysis": {"en": {"generated_at": "2026-04-18T18:09:28.139992+00:00", "value": {"mitigation_remediation": ["Apply the Dell Security Advisory DSA-2026-077 to upgrade the iSM to Windows 6.0.3.1 or Linux 5.4.1.1, which contains the fix for the access control flaw.", "Restrict local user accounts to the least privileges required for their duties and disable any unused local accounts to reduce the attack surface.", "Enforce proper authentication and authorization controls for any services running on the iSM to ensure only authorized local users can perform privileged actions."], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "Dell iDRAC Service Module for Windows versions earlier than 6.0.3.1 and Dell iDRAC Service Module for Linux versions earlier than 5.4.1.1 are affected; these modules run on Dell servers and provide remote management capabilities.", "description_and_impact": "The Dell iDRAC Service Module for Windows (before v6.0.3.1) and Linux (before v5.4.1.1) contains an improper access control flaw that allows a user with local low privileges to gain elevated privileges on the host; this elevation could enable the attacker to perform administrative actions that are normally restricted to privileged accounts, thereby compromising the integrity of the system. The weakness is categorized as CWE-284.", "risk_and_exploitability": "The CVSS base score of 7.8 indicates high severity, yet the EPSS score of less than 1% shows that exploitation is currently considered unlikely in the wild; the vulnerability requires local, low\u2011privileged access, and it is not listed in the CISA KEV catalog, so there is no evidence of active exploitation yet."}}}}, "created": "2026-02-12T09:02:05.758198+00:00", "title": "Improper Access Control in Dell iDRAC Service Module Enables Local Privilege Escalation", "updated": "2026-04-18T18:15:06.604345+00:00", "vendors": ["dell", "dell$PRODUCT$idrac_service_module"]}