CVE-2025-46365

Опубликовано: 05 нояб. 2025

Источник: nvd

CVSS3: 5.3

CVSS3: 6.7

EPSS Низкий

Описание

Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploited by an Authenticated attacker to cause Command Injection on an affected Dell CloudLink.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:cloudlink:*:*:*:*:*:*:*:*

Версия до 8.1.1 (исключая)

EPSS

Процентиль: 11%

0.00038

Низкий

5.3 Medium

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-77

Связанные уязвимости

GHSA-vhqc-4wgw-frfj

CVSS3: 5.3

github

3 месяца назад

Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be exploited by an Authenticated attacker to cause Command Injection on an affected Dell CloudLink.

EPSS

Процентиль: 11%

0.00038

Низкий

5.3 Medium

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-77