CVE-2025-38746

Low CVSS: 3.5

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure.

Vendor

Dell

Product

Supportassist Os Recovery

CWE

CWE-200

Yayın Tarihi

2025-08-06 20:15:27

Güncelleme

2025-08-18 15:38:10

Source Identifier

security_alert@emc.com

KEV Date Added

Kategoriler

CWE-200 Supportassist Os Recovery LOW Dell 2025

Referanslar

https://www.dell.com/support/kbdoc/en-us/000353093/dsa-2025-315

Benzer Kayıtlar

High

CVE-2026-22767

Dell AppSync, version(s) 4.6.0, contain(s) an UNIX Symbolic Link (Symlink) Following vulnerability. A low privileged att…

High

CVE-2026-22768

Dell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low…

Medium

CVE-2026-27101

Dell Secure Connect Gateway (SCG) 5.0 Appliance and Application version(s) 5.28.00.xx to 5.32.00.xx, contain(s) an Impro…

Medium

CVE-2026-28265

PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged attacker with local access cou…

Low

CVE-2026-24508

Dell Alienware Command Center (AWCC), versions prior to 6.12.24.0, contain an Improper Certificate Validation vulnerabil…

Medium

CVE-2026-24510

Dell Alienware Command Center (AWCC), versions prior to 6.12.24.0, contain an Improper Privilege Management vulnerabilit…