CNNVD-202601-2157 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2157

CVE-2025-46685

  • CNNVD Published: 2026-01-13

Description (Chinese)

Dell SupportAssist OS Recovery是美国戴尔(Dell)公司的提供了一个恢复环境,其中包含用于诊断和解决在计算机启动到操作系统之前可能发生的问题的工具。 Dell SupportAssist OS Recovery 5.5.15.1之前版本存在安全漏洞,该漏洞源于创建具有不安全权限的临时文件,可能导致权限提升。

Description (English)

Dell SupportAsist OS Recovery, a United States company, provides a recovery environment that includes tools for the diagnosis and resolution of problems that may occur before the computer is launched to the operating system. There was a security loophole in the pre-Dell SupportAsist OS Study 5.5.15.1 version, which originated in the creation of temporary documents with unsafe privileges, which could lead to an increase in privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

戴尔

Published

2026-01-13

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000401506/dsa-2025-456

Patch

https://www.dell.com/support/kbdoc/en-us/000401506/dsa-2025-456

Share on: