Buffer Access with Incorrect Length Value

CVE-2025-38743

High

7.8/10

Summary

Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-805 - Buffer Access with Incorrect Length Value

The software uses a sequential operation to read or write a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer.

References

Advisory Timeline

Published Aug 21, 2025

Buffer Access with Incorrect Length Value

CVE-2025-38743

Summary

CWE-805 - Buffer Access with Incorrect Length Value

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS