Login Sign Up

CVE-2024-25948

4.8 MEDIUM
Denial of Service

📋 TL;DR

CVE-2024-25948 is an out-of-bounds write vulnerability in Dell iDRAC Service Module versions 5.3.0.0 and earlier. A privileged local attacker could execute arbitrary code, potentially causing denial of service. This affects systems running the vulnerable iDRAC Service Module software.

💻 Affected Systems

Products:
  • Dell iDRAC Service Module
Versions: 5.3.0.0 and prior versions
Operating Systems: Windows, Linux
Default Config Vulnerable: ⚠️ Yes
Notes: Requires local privileged access to exploit. iDRAC Service Module must be installed and running.

📦 What is this software?

Emc Idrac Service Module by Dell

View all CVEs affecting Emc Idrac Service Module →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Privileged local attacker gains arbitrary code execution with SYSTEM/root privileges, leading to complete system compromise, data exfiltration, or persistent backdoor installation.

🟠

Likely Case

Local attacker with administrative privileges causes denial of service by crashing the iDRAC Service Module, disrupting remote management capabilities.

🟢

If Mitigated

With proper access controls limiting local administrative privileges, impact is limited to denial of service from authorized administrators.

🌐 Internet-Facing: LOW
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires local privileged access. No public exploit code available at time of analysis.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Update to iDRAC Service Module version 5.4.0.0 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000227444/dsa-2024-086-security-update-for-dell-idrac-service-module-for-memory-corruption-vulnerabilities

Restart Required: Yes

Instructions:

1. Download latest iDRAC Service Module from Dell Support. 2. Stop iDRAC Service Module service. 3. Install updated version. 4. Restart system to complete installation.

🔧 Temporary Workarounds

Restrict Local Administrative Access

all

Limit local administrative privileges to trusted users only to reduce attack surface.

Disable iDRAC Service Module

all

Temporarily disable the iDRAC Service Module if not required for operations.

Windows: sc stop "iDRAC Service Module"
Linux: systemctl stop idracsvc

🧯 If You Can't Patch

  • Implement strict access controls to limit local administrative privileges
  • Monitor for unusual process activity related to iDRAC Service Module

🔍 How to Verify

Check if Vulnerable:

Check iDRAC Service Module version. If version is 5.3.0.0 or earlier, system is vulnerable.

Check Version:

Windows: wmic product where "name like 'iDRAC Service Module%'" get version
Linux: rpm -qa | grep -i idrac

Verify Fix Applied:

Verify iDRAC Service Module version is 5.4.0.0 or later after update.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected crashes or restarts of iDRAC Service Module process
  • Unusual process creation from iDRAC Service Module executable

Network Indicators:

  • Unusual outbound connections from systems with iDRAC Service Module

SIEM Query:

process_name:"iDRAC Service Module" AND (event_type:crash OR parent_process:unusual)

📊 Metadata

CVE ID: CVE-2024-25948
CVSS v3 Score: 4.8 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:H
CWE: CWE-787
Published: August 1, 2024
Last Updated: August 2, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-25948, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)