CVE-2025-22480 Information

Description

Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability leading to arbitrary file deletion and Elevation of Privileges.

Reference

https://www.dell.com/support/kbdoc/en-us/000275712/dsa-2025-051