Information Disclosure Vulnerability in Dell Integrated Remote Access Controller
CVE-2026-26948

4.9MEDIUM

Key Information:

Vendor: Dell
Status: Integrated Dell Remote Access Controller
Vendor: CVE Published:; 18 March 2026

What is CVE-2026-26948?

The Integrated Dell Remote Access Controller (iDRAC) software from Dell exhibits a vulnerability stemming from uncleared debug information, allowing attackers with high privileges and remote access to potentially exploit the system. This flaw could result in unauthorized disclosure of sensitive system information, posing significant risks to system integrity and confidentiality. Users are advised to review the details and apply necessary updates to mitigate potential threats.

Affected Version(s)

Integrated Dell Remote Access Controller 0 < 7.00.00.174 or later

Integrated Dell Remote Access Controller 0 < 7.10.90.00 or later

References

https://www.dell.com/support/kbdoc/en-us/000434533/dsa-20...

vendor-advisory

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 18, 2026
Vulnerability Reserved
Feb 16, 2026

CVE-2026-26948 Data

JSON