CVE-2025-36573

Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive Information into Log File vulnerability. A user with local access could potentially exploit this vulnerability, leading to Information disclosure.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 4.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://www.dell.com/support/kbdoc/en-us/000323183/dsa-2025-218

Configurations

No configuration.

History

16 Jun 2025, 12:32

Type	Values Removed	Values Added
Summary		(es) Dell Smart Dock Firmware, versiones anteriores a la 01.00.08.01, contiene una vulnerabilidad de inserción de información confidencial en el archivo de registro. Un usuario con acceso local podría explotar esta vulnerabilidad, lo que podría provocar la divulgación de información.

12 Jun 2025, 16:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-06-12 16:15

Updated : 2025-06-16 12:32

NVD link : CVE-2025-36573

Mitre link : CVE-2025-36573

CVE.ORG link : CVE-2025-36573

JSON object : View

Products Affected

No product.

CWE

CWE-532

Insertion of Sensitive Information into Log File

7.1 /10