PatchSiren cyber security CVE debrief
CVE-2026-41116 Dell CVE debrief
CVE-2026-41116 is a vulnerability in Dell Inventory Collector Client, versions prior to 13.8.0. The vulnerability is caused by an Improper Link Resolution Before File Access ('Link Following') issue. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary File Write. The CVSS score for this vulnerability is 6.3, and the severity is classified as MEDIUM.
- Vendor
- Dell
- Product
- Inventory Collector Client
- CVSS
- MEDIUM 6.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-09
- Original CVE updated
- 2026-06-09
- Advisory published
- 2026-06-09
- Advisory updated
- 2026-06-09
Who should care
Users of Dell Inventory Collector Client, versions prior to 13.8.0, should apply the necessary updates to mitigate this vulnerability.
Technical summary
The vulnerability exists in Dell Inventory Collector Client, versions prior to 13.8.0. It is caused by an Improper Link Resolution Before File Access ('Link Following') issue, which could allow a low privileged attacker with local access to potentially exploit this vulnerability, leading to Arbitrary File Write.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the necessary updates to Dell Inventory Collector Client to version 13.8.0 or later.
- Restrict local access to the Dell Inventory Collector Client to trusted users only.
Evidence notes
The CVE record was obtained from the official CVE website [cve-org]. The vulnerability details were retrieved from the NVD database [nvd]. Additional information was obtained from Dell's support website [ref-4].
Official resources
-
CVE-2026-41116 CVE record
CVE.org
-
CVE-2026-41116 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-41116 was published on 2026-06-09T18:16:44.490Z and modified on 2026-06-09T19:30:24.713Z.