CVE-2025-46608
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-46608, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-11-12

Last updated on: 2025-12-05

Assigner: Dell

Description

Dell Data Lakehouse, versions prior to 1.6.0.0, contain(s) an Improper Access Control vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges. This vulnerability is considered Critical, as it may result in unauthorized access with elevated privileges, compromising system integrity and customer data. Dell recommends customers upgrade to the latest version at the earliest opportunity.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-11-12
Last Modified
2025-12-05
Generated
2026-07-06
AI Q&A
2025-11-13
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
dell data_lakehouse to 1.6.0.0 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is an Improper Access Control issue in Dell Data Lakehouse versions prior to 1.6.0.0. It allows a high privileged attacker with remote access to potentially exploit the system to gain elevated privileges, which means they can perform actions beyond their authorized level.

Impact Analysis

The impact of this vulnerability includes unauthorized access with elevated privileges, which can compromise system integrity and customer data. This could lead to critical security breaches, data loss, or manipulation by attackers.

Mitigation Strategies

Dell recommends customers upgrade to the latest version of Dell Data Lakehouse to mitigate this vulnerability at the earliest opportunity.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-46608. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart