CVE-2026-41116NVD

Vulnerability Summary

Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary File Write.

Severity Level

MEDIUM(6.3)

Published Date

Jun 9, 2026

Last Modified

Jun 9, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.01%Probability

Root Weakness (CWE)

CWE-1386: Unknown/Unlisted Weakness ↗

Refer to the official MITRE database for detailed architectural specifications regarding this weakness.

CVSS v3.1 Base Metrics

Attack VectorLocal

Attack ComplexityHigh

Privileges RequiredLow

User InteractionNone

ScopeUnchanged

ConfidentialityNone

IntegrityHigh

AvailabilityHigh

External References

https://www.dell.com/support/kbdoc/en-us/000463760/dsa-2026-215

Critical Alert

CVE Watchtower

CVE-2026-41116NVD

Vulnerability Summary

External References