How severe is CVE-2025-38743?

CVE-2025-38743 has a CVSS v3 score of 7.8 (HIGH).

CVE-2025-38743

Name: emc_idrac_service_module
Author: dell

7.8HIGH

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit th

Published: 8/21/2025Updated: 9/3/2025

Description

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges.

AI AnalysisPowered by AI

Affected Products

dellemc_idrac_service_module

References

https://www.dell.com/support/kbdoc/en-us/000359617/dsa-2025-311-security-update-for-dell-idrac-service-module-vulnerabilities
Vendor Advisory