Process Control Vulnerability in Dell Integrated Remote Access Controller
CVE-2026-26945

5.3MEDIUM

Key Information:

Vendor: Dell
Status: Integrated Dell Remote Access Controller
Vendor: CVE Published:; 18 March 2026

What is CVE-2026-26945?

The Dell Integrated Dell Remote Access Controller (iDRAC) across various versions possess a Process Control vulnerability. A highly privileged attacker with adjacent network access could exploit this flaw to execute arbitrary code. This vulnerability poses significant security risks for systems relying on these iDRAC versions, emphasizing the importance of keeping systems updated to prevent potential exploits.

Affected Version(s)

Integrated Dell Remote Access Controller 0 < 7.00.00.181 or later

Integrated Dell Remote Access Controller 0 < 7.20.10.50 or later

Integrated Dell Remote Access Controller 0 < 1.20.25.00 or later

References

https://www.dell.com/support/kbdoc/en-us/000434533/dsa-20...

vendor-advisory

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 18, 2026
Vulnerability Reserved
Feb 16, 2026

CVE-2026-26945 Data

JSON