CVE-2025-26331
CVE-2025-26331
Título es
CVE-2025-26331
Vie, 07/03/2025 – 08:15
Tipo
CWE-77
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2025-26331
Descripción en
Dell ThinOS 2411 and prior, contains an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary code execution.
07/03/2025
07/03/2025
Vector CVSS:3.1
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Gravedad 3.1 (CVSS 3.1 Base Score)
7.80
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
HIGH
Referencias
https://www.dell.com/support/kbdoc/en-us/000289886/dsa-2025-107
Enviar en el boletín
Off
