CVE-2025-26336 – A stack-based buffer overflow vulnerability in ... (How to Fix)

Q: What is the severity of CVE-2025-26336?

CVE-2025-26336 has a CVSS score of 8.3 (HIGH). A stack-based buffer overflow vulnerability in Dell Chassis Management Controller firmware allows unauthenticated remote attackers to execute arbitrary code on affected systems. This affects Dell PowerEdge FX2 and VRTX chassis management controllers running outdated firmware versions. Successful exploitation could lead to complete system compromise.

📋 TL;DR

A stack-based buffer overflow vulnerability in Dell Chassis Management Controller firmware allows unauthenticated remote attackers to execute arbitrary code on affected systems. This affects Dell PowerEdge FX2 and VRTX chassis management controllers running outdated firmware versions. Successful exploitation could lead to complete system compromise.

💻 Affected Systems

Products:

Dell PowerEdge FX2 Chassis Management Controller
Dell PowerEdge VRTX Chassis Management Controller

Versions: FX2: prior to 2.40.200.202101130302, VRTX: prior to 3.41.200.202209300499

Operating Systems: Embedded firmware

Default Config Vulnerable: ⚠️ Yes

Notes: Affects the chassis management controller firmware, not the server operating systems. Default configurations are vulnerable.

📦 What is this software?

Chassis Management Controller For Poweredge Fx2 Firmware by Dell

View all CVEs affecting Chassis Management Controller For Poweredge Fx2 Firmware →

Chassis Management Controller For Poweredge Vrtx Firmware by Dell

View all CVEs affecting Chassis Management Controller For Poweredge Vrtx Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system takeover with remote code execution, allowing attacker to install persistent malware, steal credentials, pivot to other systems, or disrupt operations.

🟠

Likely Case

Remote code execution leading to system compromise, data theft, or service disruption of the chassis management controller.

🟢

If Mitigated

Limited impact if systems are patched, network access is restricted, and proper segmentation is in place.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

CWE-121 indicates stack-based buffer overflow, which typically requires some exploit development but is well-understood by attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: FX2: 2.40.200.202101130302 or later, VRTX: 3.41.200.202209300499 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000297463/dsa-2025-123-security-update-for-dell-chassis-management-controller-firmware-for-dell-poweredge-fx2-and-vrtx-vulnerabilities

Restart Required: Yes

Instructions:

1. Download latest firmware from Dell Support site. 2. Backup current configuration. 3. Apply firmware update via web interface or CLI. 4. Reboot chassis management controller. 5. Verify successful update.

🔧 Temporary Workarounds

Network Access Restriction

all

Restrict network access to chassis management controller interfaces to trusted management networks only.

VLAN Segmentation

all

Place chassis management controllers on isolated management VLANs with strict firewall rules.

🧯 If You Can't Patch

Implement strict network segmentation to isolate chassis management controllers from untrusted networks.
Monitor for suspicious network traffic to chassis management controller interfaces and implement intrusion detection.

🔍 How to Verify

Check if Vulnerable:

Check firmware version in chassis management controller web interface or via SSH/console: show version or system-info commands.

Check Version:

ssh admin@<cmc-ip> 'show version' or access web interface at https://<cmc-ip> and check System Information

Verify Fix Applied:

Verify firmware version matches or exceeds patched versions: FX2 >= 2.40.200.202101130302, VRTX >= 3.41.200.202209300499.

📡 Detection & Monitoring

Log Indicators:

Unusual authentication attempts to chassis management controller
Firmware modification logs
System reboot events without scheduled maintenance

Network Indicators:

Unusual network traffic patterns to chassis management controller ports (typically 443, 22, 161)
Connection attempts from unexpected source IPs

SIEM Query:

source="dell-cmc-logs" AND (event_type="authentication_failure" OR event_type="firmware_change" OR event_type="unexpected_reboot")

📊 Metadata

CVE ID: CVE-2025-26336

CVSS v3 Score: 8.3 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

CWE: CWE-121

EPSS Score: 0.14% exploit probability (34.4th percentile)

Published: March 21, 2025

Last Updated: March 27, 2025

🔗 References

https://www.dell.com/support/kbdoc/en-us/000297463/dsa-2025-123-security-update-for-dell-chassis-management-controller-firmware-for-dell-poweredge-fx2-and-vrtx-vulnerabilities Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-26336, you might also want to check these: