CNNVD-202511-1845 Information
CNNVD ID
CNNVD-202511-1845
Related CVE
- CNNVD Published: 2025-11-17
Description (Chinese)
Dell ControlVault3和Dell ControlVault3 Plus都是美国戴尔(Dell)公司的一款基于硬件的安全解决方案。 Dell ControlVault3 5.15.14.19之前版本和Dell ControlVault3 Plus 6.2.36.47之前版本存在安全漏洞,该漏洞源于CvManager_SBI功能存在缓冲区溢出,可能导致执行任意代码。
Description (English)
Dell ControlVault3 and Dell ControlVault3 Plus are both hardware-based security solutions for Dell in the United States. Pre-Dell ControlVault 3 5.15.14.19 and pre-Dell ControlVault 3 Plus 6.2.36.47 have a security loophole, which stems from the presence of the CvManager SBI function in the buffer zone, which could lead to the implementation of arbitrary codes.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
戴尔
Published
2025-11-17
Last Modified
2026-02-24
References
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2188 https://www.dell.com/support/kbdoc/en-us/000326061/dsa-2025-228 https://access.redhat.com/security/cve/cve-2025-32089
Patch
https://www.dell.com/support/kbdoc/en-us/000326061/dsa-2025-228
Share on: