CVE-2025-46366
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-11-05
Last updated on: 2025-11-07
Assigner: Dell
Description
Description
Dell CloudLink, versions prior to 8.1.1, contain a vulnerability where a privileged user may exploit and gain parallel privilege escalation or access to the database to obtain confidential information.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dell | cloudlink | to 8.1.1 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-256 | The product stores a password in plaintext within resources such as memory or files. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in Dell CloudLink versions prior to 8.1.1, where a privileged user can exploit the system to escalate their privileges further or gain access to the database, allowing them to obtain confidential information.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access to confidential information and allow a privileged user to escalate their privileges, potentially compromising the confidentiality, integrity, and availability of the system.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70