Dell Idrac Service Module (Ism)
8 CVEs affecting Dell Idrac Service Module (Ism). Latest disclosed: 2025-08-21. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-38743 | High | 7.8 | 2025-08-21 | Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with… |
CVE-2024-22428 | High | 7.0 | 2024-01-16 | Dell iDRAC Service Module, versions 5.2.0.0 and prior, contain an Incorrect Default Permissions vulnerability. It may allow a local unprivileged user to escal… |
CVE-2024-38490 | Medium | 5.8 | 2024-08-01 | Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code poten… |
CVE-2025-38742 | Medium | 5.3 | 2025-08-21 | Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged a… |
CVE-2024-38481 | Medium | 4.8 | 2024-08-01 | Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Read Vulnerability. A privileged local attacker could execute arbitrary code potent… |
CVE-2024-25948 | Medium | 4.8 | 2024-08-01 | Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code poten… |
CVE-2024-25947 | Medium | 4.8 | 2024-08-01 | Dell iDRAC Service Module version 5.3.0.0 and prior, contain an Out of bound Read Vulnerability. A privileged local attacker could execute arbitrary code poten… |
CVE-2024-38489 | Low | 3.1 | 2024-08-01 | Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability. A privileged local attacker could execute arbitrary code potenti… |