CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38742

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.3%

CVSS Severity

CVSS v3 Score 5.3

References

https://www.dell.com/support/kbdoc/en-us/000359617/dsa-2025-311-security-update-for-dell-idrac-service-module-vulnerabilities

Products affected by CVE-2025-38742

Dell » Emc Idrac Service Module » Version: N/A

cpe:2.3:a:dell:emc_idrac_service_module:-
Dell » Emc Idrac Service Module » Version: 3.0.1

cpe:2.3:a:dell:emc_idrac_service_module:3.0.1
Dell » Emc Idrac Service Module » Version: 3.0.2

cpe:2.3:a:dell:emc_idrac_service_module:3.0.2
Dell » Emc Idrac Service Module » Version: 3.1.0

cpe:2.3:a:dell:emc_idrac_service_module:3.1.0
Dell » Emc Idrac Service Module » Version: 3.2.0

cpe:2.3:a:dell:emc_idrac_service_module:3.2.0
Dell » Emc Idrac Service Module » Version: 5.1.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.1.0.0
Dell » Emc Idrac Service Module » Version: 5.2.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.2.0.0
Dell » Emc Idrac Service Module » Version: 5.3.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.3.0.0
Dell » Emc Idrac Service Module » Version: 5.3.1.0

cpe:2.3:a:dell:emc_idrac_service_module:5.3.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38742

Products

Pricing

Contact Us