CNNVD-202511-396 Information

CNNVD ID

CNNVD-202511-396

Related CVE

CVE-2025-30479

• CNNVD Published: 2025-11-05

Description (Chinese)

Dell CloudLink是美国戴尔（Dell）公司的一个数据加密和密钥管理系统。 Dell CloudLink 8.2之前版本存在操作系统命令注入漏洞，该漏洞源于特权用户可通过命令注入获得系统控制权。

Description (English)

Dell CloudLink is a data encryption and key management system for Dell Corporation in the United States. The previous version of Dell CloudLink 8.2 had a loophole in the operating system command, which originated from the privileged user ’ s ability to obtain control of the system through the injection of the order.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

戴尔

Published

2025-11-05

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities

Patch

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities