CVE-2025-24919 | Dell ControlVault3/ControlVault3 Plus cvhDecapsulateCmd deserialization (dsa-2025-053)

A vulnerability classified as critical was found in Dell ControlVault3 and ControlVault3 Plus. Affected by this vulnerability is the function cvhDecapsulateCmd. The manipulation leads to deserialization.

This vulnerability is known as CVE-2025-24919. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.