Full Report
Dell security advisory (AV26-638)
Analysis Summary
# Vulnerability: Dell Multi-Product Security Updates (June 2026)
## CVE Details
*Note: The provided advisory (AV24-638) is a summary bulletin. Specific CVE IDs are typically detailed in the individual vendor sub-advisories.*
- **CVE ID:** Multiple (Refer to Dell Security Portal)
- **CVSS Score:** Variable (Refer to specific product bulletins)
- **CWE:** Multiple (Expected weaknesses include Improper Input Validation, Buffer Overflows, and Privilege Escalation common to firmware/management interfaces).
## Affected Systems
- **Products:**
- Dell PowerProtect Data Manager Appliance DM5510
- Dell Networking OS10
- Dell Private Cloud, Nutanix
- PowerSwitch Z9864F-ON
- Dell AX System for Azure Stack HCI
- Dell OpenManage Enterprise Modular (OME-M)
- Dell iDRAC10
- **Versions:**
- DM5510: Versions prior to 20.1.0.0
- Networking OS10: Versions prior to 10.6.1.2
- Nutanix Private Cloud: Versions prior to 01.02.00.00
- PowerSwitch Z9864F-ON: Versions prior to 3.5.0
- AX System for Azure: Versions prior to 2606
- OME-Modular: Versions prior to 2.20.20
- iDRAC10: Versions prior to 1.30.10.51
- **Configurations:** Systems running management interfaces (iDRAC) or networking OS controllers exposed to untrusted environments.
## Vulnerability Description
While specific technical details vary per product, these updates generally address critical flaws in management firmware and network operating systems. Vulnerabilities in these components often involve the handling of administrative requests, unauthenticated access to service ports, or insufficient sanitization of environmental variables within the PowerSwitch and iDRAC architectures.
## Exploitation
- **Status:** Not currently reported as exploited in the wild (as of June 2026 summary).
- **Complexity:** Generally Medium to High (Depending on the specific subsystem affected).
- **Attack Vector:** Network (Many Dell management tools are targeted via web-based management consoles or API endpoints).
## Impact
- **Confidentiality:** High (Potential access to system configuration and credentials).
- **Integrity:** High (Potential for unauthorized firmware modification or system settings changes).
- **Availability:** High (Potential for Denial of Service on critical backup and networking infrastructure).
## Remediation
### Patches
Dell recommends updating to the following versions or later:
- **DM5510:** Update to 20.1.0.0
- **Networking OS10:** Update to 10.6.1.2
- **Nutanix Private Cloud:** Update to 01.02.00.00
- **PowerSwitch Z9864F-ON:** Update to 3.5.0
- **AX System for Azure:** Update to 2606
- **OME Modular:** Update to 2.20.20
- **iDRAC10:** Update to 1.30.10.51
### Workarounds
- Isolate management interfaces (iDRAC, OME) on dedicated, air-gapped Management VLANs.
- Disable unused services (SNMP, SSH, HTTP) if not required for operational workflows.
- Implement strict Access Control Lists (ACLs) to restrict access to networking switches.
## Detection
- **Indicators of Compromise:** Unusual administrative logins from unrecognized IP addresses; unexpected reboots or configuration changes in Networking OS10 logs.
- **Detection methods and tools:** Utilize Dell OpenManage to monitor firmware integrity and check for "Out of Compliance" status against the new baseline versions.
## References
- **Vendor Advisories:** hxxps[://]www[.]dell[.]com/support/security/en-ca
- **Cyber Centre Bulletin:** hxxps[://]www[.]cyber[.]gc[.]ca/en/alerts-advisories/dell-security-advisory-av26-638