CVE-2026-26948
Received Received - Intake
Information Disclosure in Dell iDRAC 9, 14G-16G via Debug Data Exposure

Publication date: 2026-03-18

Last updated on: 2026-03-18

Assigner: Dell

Description
Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.174, 15G and 16G versions prior to 7.10.90.00, contain an Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-18
Last Modified
2026-03-18
Generated
2026-06-16
AI Q&A
2026-03-18
EPSS Evaluated
2026-06-15
NVD
CVE-2026-26948
EUVD
EUVD-2026-12917
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
dell integrated_dell_remote_access_controller to 7.00.00.174 (exc)
dell integrated_dell_remote_access_controller to 7.10.90.00 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-1258 The hardware does not fully clear security-sensitive values, such as keys and intermediate values in cryptographic operations, when debug mode is entered.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in Dell Integrated Dell Remote Access Controller (iDRAC) versions prior to 7.00.00.174 for 14G, and prior to 7.10.90.00 for 15G and 16G. It involves the exposure of sensitive system information due to uncleared debug information. A highly privileged attacker with remote access could exploit this flaw to disclose sensitive information.

Impact Analysis

The impact of this vulnerability is information disclosure. Specifically, a high privileged attacker with remote access could exploit the uncleared debug information to gain access to sensitive system information. This could potentially aid in further attacks or unauthorized access.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-26948. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart