CVE-2025-26482

Published: Sep 25, 2025

Modified: Sep 26, 2025

PUBLISHED

CVSS v3.1

4.9

MEDIUM

Description

Dell PowerEdge Server BIOS and Dell iDRAC9, all versions, contains an Information Disclosure vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information Disclosure.

Vendor	Product	Versions
Dell	PowerEdge R770	affected `N/A - < 1.2.6`
Dell	PowerEdge R670	affected `N/A - < 1.2.6`
Dell	PowerEdge R570	affected `N/A - < 1.2.6`
Dell	PowerEdge R470	affected `N/A - < 1.2.6`
Dell	PowerEdge R6715	affected `N/A - < 1.1.2`
Dell	PowerEdge R7715	affected `N/A - < 1.1.2`
Dell	PowerEdge R6725	affected `N/A - < 1.1.3`
Dell	PowerEdge R7725	affected `N/A - < 1.1.3`
Dell	PowerEdge R660	affected `N/A - < 2.5.4`
Dell	PowerEdge R760	affected `N/A - < 2.5.4`
Dell	PowerEdge C6620	affected `N/A - < 2.5.4`
Dell	PowerEdge MX760c	affected `N/A - < 2.5.4`
Dell	PowerEdge R860	affected `N/A - < 2.5.4`
Dell	PowerEdge R960	affected `N/A - < 2.5.4`
Dell	PowerEdge HS5610	affected `N/A - < 2.5.4`
Dell	PowerEdge HS5620	affected `N/A - < 2.5.4`
Dell	PowerEdge R660xs	affected `N/A - < 2.5.4`
Dell	PowerEdge R760xs	affected `N/A - < 2.5.4`
Dell	PowerEdge R760xd2	affected `N/A - < 2.5.4`
Dell	PowerEdge T560	affected `N/A - < 2.5.4`
Dell	PowerEdge R760xa	affected `N/A - < 2.5.4`
Dell	PowerEdge XE9680	affected `N/A - < 2.5.4`
Dell	PowerEdge XE9680L	affected `N/A - < 2.5.4`
Dell	PowerEdge XR5610	affected `N/A - < 2.5.4`
Dell	PowerEdge XR8610t	affected `N/A - < 2.5.4`
Dell	PowerEdge XR8620t	affected `N/A - < 2.5.4`
Dell	PowerEdge XR7620	affected `N/A - < 2.5.4`
Dell	PowerEdge XE8640	affected `N/A - < 2.5.4`
Dell	PowerEdge XE9640	affected `N/A - < 2.5.4`
Dell	PowerEdge T160	affected `N/A - < 2.0.0`
Dell	PowerEdge T360	affected `N/A - < 2.0.0`
Dell	PowerEdge R260	affected `N/A - < 2.0.0`
Dell	PowerEdge R360	affected `N/A - < 2.0.0`
Dell	PowerEdge R650	affected `N/A - < 1.16.2`
Dell	PowerEdge R750	affected `N/A - < 1.16.2`
Dell	PowerEdge R750XA	affected `N/A - < 1.16.2`
Dell	PowerEdge C6520	affected `N/A - < 1.16.2`
Dell	PowerEdge MX750C	affected `N/A - < 1.16.2`
Dell	PowerEdge R550	affected `N/A - < 1.16.2`
Dell	PowerEdge R450	affected `N/A - < 1.16.2`
Dell	PowerEdge R650XS	affected `N/A - < 1.16.2`
Dell	PowerEdge R750XS	affected `N/A - < 1.16.2`
Dell	PowerEdge T550	affected `N/A - < 1.16.2`
Dell	PowerEdge XR11	affected `N/A - < 1.16.2`
Dell	PowerEdge XR12	affected `N/A - < 1.16.2`
Dell	PowerEdge XR4510c	affected `N/A - < 1.17.3`
Dell	PowerEdge XR4520c	affected `N/A - < 1.17.3`
Dell	PowerEdge T150	affected `N/A - < 1.11.1`
Dell	PowerEdge T350	affected `N/A - < 1.11.1`
Dell	PowerEdge R250	affected `N/A - < 1.11.1`
Dell	PowerEdge R350	affected `N/A - < 1.11.1`
Dell	PowerEdge R740	affected `N/A - < 2.23.0`
Dell	PowerEdge R740XD	affected `N/A - < 2.23.0`
Dell	PowerEdge R640	affected `N/A - < 2.23.0`
Dell	PowerEdge R940	affected `N/A - < 2.23.0`
Dell	PowerEdge R540	affected `N/A - < 2.23.0`
Dell	PowerEdge R440	affected `N/A - < 2.23.0`
Dell	PowerEdge T440	affected `N/A - < 2.23.0`
Dell	PowerEdge XR2	affected `N/A - < 2.23.0`
Dell	PowerEdge R740XD2	affected `N/A - < 2.23.0`
Dell	PowerEdge R840	affected `N/A - < 2.23.0`
Dell	PowerEdge R940XA	affected `N/A - < 2.23.0`
Dell	PowerEdge T640	affected `N/A - < 2.23.0`
Dell	PowerEdge C6420	affected `N/A - < 2.23.0`
Dell	PowerEdge FC640	affected `N/A - < 2.23.0`
Dell	PowerEdge M640	affected `N/A - < 2.23.0`
Dell	PowerEdge M640 (for PE VRTX)	affected `N/A - < 2.23.0`
Dell	PowerEdge MX740C	affected `N/A - < 2.23.0`
Dell	PowerEdge MX840C	affected `N/A - < 2.23.0`
Dell	PowerEdge C4140	affected `N/A - < 2.23.0`
Dell	DSS 8440	affected `N/A - < 2.23.0`
Dell	PowerEdge XE2420	affected `N/A - < 2.23.0`
Dell	PowerEdge XE7420	affected `N/A - < 2.23.0`
Dell	PowerEdge XE7440	affected `N/A - < 2.23.0`
Dell	PowerEdge T140	affected `N/A - < 2.18.0`
Dell	PowerEdge T340	affected `N/A - < 2.18.0`
Dell	PowerEdge R240	affected `N/A - < 2.18.0`
Dell	PowerEdge R340	affected `N/A - < 2.18.0`
Dell	Dell EMC Storage NX3240	affected `N/A - < 2.23.0`
Dell	Dell EMC Storage NX3340	affected `N/A - < 2.23.0`
Dell	Dell EMC NX440	affected `N/A - < 2.18.0`
Dell	Dell XC Core XC660	affected `N/A - < 2.5.4`
Dell	Dell XC Core XC760	affected `N/A - < 2.5.4`
Dell	Dell XC Core XC660xs	affected `N/A - < 2.5.4`
Dell	Dell XC Core XC760xa	affected `N/A - < 2.5.4`
Dell	Dell EMC XC Core XC450	affected `N/A - < 1.16.2`
Dell	Dell EMC XC Core XC650	affected `N/A - < 1.16.2`
Dell	Dell EMC XC Core XC750	affected `N/A - < 1.16.2`
Dell	Dell EMC XC Core XC750xa	affected `N/A - < 1.16.2`
Dell	Dell EMC XC Core XC6520	affected `N/A - < 1.16.2`
Dell	Dell EMC XC Core 6420 System	affected `N/A - < 2.23.0`
Dell	Dell EMC XC Core XC640 System	affected `N/A - < 2.23.0`
Dell	Dell EMC XC Core XC740xd System	affected `N/A - < 2.23.0`
Dell	Dell EMC XC Core XC740xd2	affected `N/A - < 2.23.0`
Dell	Dell EMC XC Core XC940 System	affected `N/A - < 2.23.0`
Dell	Dell EMC XC Core XCXR2	affected `N/A - < 2.23.0`
Dell	PowerEdge R6615	affected `N/A - < 1.11.2`
Dell	PowerEdge R7615	affected `N/A - < 1.11.2`
Dell	PowerEdge R6625	affected `N/A - < 1.11.2`
Dell	PowerEdge R7625	affected `N/A - < 1.11.2`
Dell	PowerEdge C6615	affected `N/A - < 1.6.2`
Dell	PowerEdge R6515	affected `N/A - < 2.18.1`
Dell	PowerEdge R6525	affected `N/A - < 2.18.1`
Dell	PowerEdge R7515	affected `N/A - < 2.18.1`
Dell	PowerEdge R7525	affected `N/A - < 2.18.1`
Dell	PowerEdge C6525	affected `N/A - < 2.18.1`
Dell	PowerEdge XE8545	affected `N/A - < 2.17.1`
Dell	Dell EMC XC Core XC7525	affected `N/A - < 2.18.1`
Dell	Dell XC Core XC7625	affected `N/A - < 1.11.2`
Dell	PowerEdge R6415	affected `N/A - < 1.25.0`
Dell	PowerEdge R7415	affected `N/A - < 1.25.0`
Dell	PowerEdge R7425	affected `N/A - < 1.25.0`
Dell	iDRAC9	affected `N/A - < 7.00.00.181`
Dell	iDRAC9	affected `N/A - < 7.20.10.50`

Weaknesses (CWE)

CWE-1258

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

https://www.dell.com/support/kbdoc/en-us/000370138/dsa-2025-046-security-update-for-dell-poweredge-server-and-dell-idrac9-for-information-disclosure-vulnerability

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-26482

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References