DSA-2026-255: Security Update for Cloudlink Multiple Vulnerabilities

Résumé: Cloudlink remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system.

Cet article concerne Cet article ne concerne pas Cet article n’est associé à aucun produit spécifique. Toutes les versions du produit ne sont pas identifiées dans cet article.
Consulter d’autres ressources

Impact

Medium

Détails

Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2026-41118 Dell CloudLink, version(s) 8.2, contain(s) an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges. 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LThis hyperlink is taking you to a website outside of Dell Technologies.
CVE-2026-46736 Dell CloudLink, version(s) CloudLink 8.1 and later versions, contain(s) a Missing Authorization vulnerability in the CloudLink Cluster. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access and denial of service. 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:HThis hyperlink is taking you to a website outside of Dell Technologies.
Proprietary Code CVEs Description CVSS Base Score CVSS Vector String
CVE-2026-41118 Dell CloudLink, version(s) 8.2, contain(s) an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges. 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LThis hyperlink is taking you to a website outside of Dell Technologies.
CVE-2026-46736 Dell CloudLink, version(s) CloudLink 8.1 and later versions, contain(s) a Missing Authorization vulnerability in the CloudLink Cluster. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access and denial of service. 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:HThis hyperlink is taking you to a website outside of Dell Technologies.
Dell Technologies recommande à tous les clients de prendre en compte à la fois le score de base CVSS et les scores temporels et environnementaux pertinents qui peuvent avoir un impact sur la gravité potentielle associée à une faille de sécurité donnée.

Produits concernés et mesure corrective

Product Affected Versions Remediated Versions Link
Cloudlink for PowerFlex Rack Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Rack Drivers & Downloads
Cloudlink for PowerFlex Appliance Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Appliance Drivers & Downloads
Cloudlink for PowerFlex Software Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Software Drivers & Downloads
Product Affected Versions Remediated Versions Link
Cloudlink for PowerFlex Rack Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Rack Drivers & Downloads
Cloudlink for PowerFlex Appliance Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Appliance Drivers & Downloads
Cloudlink for PowerFlex Software Versions prior to 8.3.1 Version 8.3.1 or later PowerFlex Software Drivers & Downloads

Historique des révisions

RevisionDateDescription
1.02026-06-18Initial release

Informations connexes

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Mention légale

Produits concernés

CloudLink
Propriétés de l’article
Numéro d’article: 000477672
Type d’article: Dell Security Advisory
Dernière modification: 18 juin 2026
Trouvez des réponses à vos questions auprès d’autres utilisateurs Dell
Services de support
Vérifiez si votre appareil est couvert par les services de support.