CVE-2025-22480 - CERT CVE

  1. CVE-2025-22480

ID CVE-2025-22480
Sažetak Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.
Reference
CVSS
Base: 7.0
Impact: 5.9
Exploitability:1.0
Pristup
VektorSloženostAutentikacija
LOCAL HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 18-02-2025 - 18:39
Objavljeno 13-02-2025 - 16:16