Dell Device Management Agent <26.05 Improper Link Resolution CVE-2026-41121
CVE-2026-41121 Published on July 1, 2026
Dell Device Management Agent, versions prior to DDMA 26.05, contain an Improper Link Resolution Before File Access ('Link Following) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
Vulnerability Analysis
CVE-2026-41121 can be exploited with local system access, requires user interaction and a small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
What is an insecure temporary file Vulnerability?
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CVE-2026-41121 has been classified to as an insecure temporary file vulnerability or weakness.
Affected Versions
Dell Device Management Agent:- Before 26.05 is affected.