CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38743

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.1%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.dell.com/support/kbdoc/en-us/000359617/dsa-2025-311-security-update-for-dell-idrac-service-module-vulnerabilities

Products affected by CVE-2025-38743

Dell » Emc Idrac Service Module » Version: N/A

cpe:2.3:a:dell:emc_idrac_service_module:-
Dell » Emc Idrac Service Module » Version: 3.0.1

cpe:2.3:a:dell:emc_idrac_service_module:3.0.1
Dell » Emc Idrac Service Module » Version: 3.0.2

cpe:2.3:a:dell:emc_idrac_service_module:3.0.2
Dell » Emc Idrac Service Module » Version: 3.1.0

cpe:2.3:a:dell:emc_idrac_service_module:3.1.0
Dell » Emc Idrac Service Module » Version: 3.2.0

cpe:2.3:a:dell:emc_idrac_service_module:3.2.0
Dell » Emc Idrac Service Module » Version: 5.1.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.1.0.0
Dell » Emc Idrac Service Module » Version: 5.2.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.2.0.0
Dell » Emc Idrac Service Module » Version: 5.3.0.0

cpe:2.3:a:dell:emc_idrac_service_module:5.3.0.0
Dell » Emc Idrac Service Module » Version: 5.3.1.0

cpe:2.3:a:dell:emc_idrac_service_module:5.3.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-38743

Products

Pricing

Contact Us