DSA-2025-321: Security Update for Dell CloudLink Vulnerability
Podsumowanie: Dell CloudLink remediation is available for a security vulnerability that could be exploited by malicious users to compromise the affected system.
Skutki
Medium
Szczegóły
|
Proprietary Code CVEs |
Description |
CVSS Base Score |
CVSS Vector String |
|
CVE-2025-26484 |
Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service. |
5.5 |
|
Proprietary Code CVEs |
Description |
CVSS Base Score |
CVSS Vector String |
|
CVE-2025-26484 |
Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service. |
5.5 |
Produkty, których dotyczy problem, i środki zaradcze
| Product | Affected Versions | Remediated Versions | Link |
| CloudLink | Versions 8.0 through 8.1.1 | Version 8.1.2 | CloudLink Downloads |
| Product | Affected Versions | Remediated Versions | Link |
| CloudLink | Versions 8.0 through 8.1.1 | Version 8.1.2 | CloudLink Downloads |
Historia zmian
|
Revision |
Date |
Description |
|
1.0 |
2025-08-13 |
Initial Release |
Podziękowania
Dell would like to thank n3k From TIANGONG Team of Legendsec at QI-ANXIN Group for reporting this issue.