CNNVD-202511-394 Information

CNNVD ID

CNNVD-202511-394

Related CVE

CVE-2025-45378

• CNNVD Published: 2025-11-05

Description (Chinese)

Dell CloudLink是美国戴尔（Dell）公司的一个数据加密和密钥管理系统。 Dell CloudLink 8.1.2及之前版本存在操作系统命令注入漏洞，该漏洞源于受限shell存在缺陷，可能导致权限提升和未经授权的系统访问。

Description (English)

Dell CloudLink is a data encryption and key management system for Dell Corporation in the United States. Dell CloudLink 8.1.2 and previous versions of the operating system commands injected a loophole, which stemmed from restricted shell defects that could lead to enhanced privileges and unauthorized system access.

Hazard Level

Low

Vulnerability Type

操作系统命令注入

Affected Vendor

戴尔

Published

2025-11-05

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities

Patch

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities