CVE-2025-25215 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An arbitrary free vulnerability exists in the cv_close functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36.…
High CVSS: 8.8

CVE-2025-25215

An arbitrary free vulnerability exists in the cv_close functionality of
Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A specially crafted ControlVault API call
can lead to an arbitrary free. An attacker can forge a fake session to
trigger this vulnerability.
Vendor
-
Product
-
CWE
CWE-763
Yayın Tarihi
2025-06-13 22:15:19
Güncelleme
2025-11-03 20:17:58
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-763 HIGH 2025

Referanslar

https://www.dell.com/support/kbdoc/en-us/000276106/dsa-2025-053 https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2129