Changeflow GovPing Data Privacy & Cybersecurity Dell Remote Access Controller Vulnerabilities
Priority review Notice Added Final

Dell Remote Access Controller Vulnerabilities

Favicon for wid.cert-bund.de CERT-Bund Security Advisories
Published March 17th, 2026
Detected March 18th, 2026
Email

Summary

CERT-Bund has issued a security advisory regarding multiple vulnerabilities in Dell Remote Access Controller (iDRAC) versions. The vulnerabilities could allow attackers to execute arbitrary code or disclose sensitive information. Mitigation is available.

View original document View source feed page

What changed

CERT-Bund has released advisory WID-SEC-2026-0766 detailing multiple vulnerabilities affecting Dell integrated Dell Remote Access Controller (iDRAC) versions. These vulnerabilities have a CVSS Base Score of 5.3 and a Temporal Score of 4.6, both rated as medium. Successful exploitation could lead to arbitrary code execution or disclosure of confidential information.

Affected systems include specific versions of Dell integrated Dell Remote Access Controller 9 and 10. While the advisory indicates mitigation is available, specific actions for remediation are not detailed within this notice. Organizations utilizing these Dell server management controllers should consult the advisory for detailed affected versions and recommended mitigation steps to prevent potential security breaches.

What to do next

  1. Review affected Dell iDRAC versions against advisory WID-SEC-2026-0766
  2. Implement available mitigation steps for identified vulnerabilities

Source document (simplified)

[WID-SEC-2026-0766] Dell integrated Dell Remote Access Controller: Mehrere Schwachstellen CVSS Base Score 5.3 (mittel) CVSS Temporal Score 4.6 (mittel) Remoteangriff ja Datum 17.03.2026 Stand 18.03.2026 Mitigation ja

Betroffene Systeme

Betriebssystem

  • Sonstiges

Produktbeschreibung

Der integrierte Dell Remote Access Controller (iDRAC) ermöglicht eine Out-of-Band-Verwaltung auf bestimmten Dell-Servern.

Produkte

17.03.2026
- Dell integrated Dell Remote Access Controller 9 <7.00.00.181

  • Dell integrated Dell Remote Access Controller 9 <7.20.10.50

  • Dell integrated Dell Remote Access Controller 9 <7.00.00.174

  • Dell integrated Dell Remote Access Controller 9 <7.10.90.00

  • Dell integrated Dell Remote Access Controller 10 <1.20.25.00

Angriff

Angriff

Ein Angreifer kann mehrere Schwachstellen in Dell integrated Dell Remote Access Controller ausnutzen, um beliebigen Programmcode auszuführen oder um vertrauliche Informationen offenzulegen. CVE Informationen Versionshistorie Feedback zum Advisory geben

Related changes

Favicon for wid.cert-bund.de nghttp2 Vulnerability Allows Denial of Service
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Linux Kernel Vulnerabilities
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for wid.cert-bund.de Budibase Vulnerability Allows Bypass and Information Disclosure
Priority review Mar 18, 2026 CERT-Bund Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr VMware Products Multiple Vulnerabilities Advisory
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Multiple vulnerabilities found in Atlassian products
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity
Favicon for www.cert.ssi.gouv.fr Apple Products Vulnerability: Security Policy Bypass
Priority review Mar 18, 2026 CERT-FR Security Advisories Data Privacy & Cybersecurity

Source

Favicon for wid.cert-bund.de
CERT-Bund Security Advisories wid.cert-bund.de/content/public/securityAdvisory/rss
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
CERT-Bund
Published
March 17th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Substantive

Who this affects

Applies to
Manufacturers IT Security
Geographic scope
Germany

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Topics
Product Safety Information Security

Browse Categories

Agriculture & Food Safety 61 Banking & Finance 179 Consumer Protection 35 Courts & Legal 243 Data Privacy & Cybersecurity 59 Defense & National Security 48 Education 20 Energy 94 Environment 81 Government & Legislation 240 Healthcare 106 Housing 15 Immigration 8 Insurance 17 Labor & Employment 107 Pharma & Drug Safety 72 Securities & Markets 73 Tax 48 Telecom & Technology 34 Trade & Sanctions 122 Transportation 56

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when CERT-Bund Security Advisories publishes new changes.

Free. Unsubscribe anytime.