CVE-2025-31649 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A hard-coded password vulnerability exists in the ControlVault WBDI Driver functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus p…
High CVSS: 8.7

CVE-2025-31649

A hard-coded password vulnerability exists in the ControlVault WBDI Driver functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted ControlVault API call can lead to execute priviledged operation. An attacker can issue an api call to trigger this vulnerability.
Vendor
-
Product
-
CWE
CWE-908
Yayın Tarihi
2025-11-17 23:15:51
Güncelleme
2025-11-18 14:06:29
Source Identifier
talos-cna@cisco.com
KEV Date Added
-

Kategoriler

CWE-908 HIGH 2025

Referanslar

https://talosintelligence.com/vulnerability_reports/TALOS-2025-2173 https://www.dell.com/support/kbdoc/en-us/000326061/dsa-2025-228 https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2173