CVE-2025-26336

Summary

Dell Chassis Management Controller Firmware for Dell PowerEdge FX2, version(s) prior to 2.40.200.202101130302, and Dell Chassis Management Controller Firmware for Dell PowerEdge VRTX version(s) prior to 3.41.200.202209300499, contain(s) a Stack-based Buffer Overflow vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Remote execution.

Affected Software

VendorProductVersion RangeStatus
DellDell Chassis Management Controller (CMC) for Dell PowerEdge FX2N/A < 2.40.200.202101130302affected
DellDell Chassis Management Controller (CMC) for PowerEdge VRTXN/A < 3.41.200.202209300499affected

Weaknesses

  • CWE-121: CWE-121: Stack-based Buffer Overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References