CVE-2025-25050 | Dell ControlVault3/ControlVault3 Plus cv_upgrade_sensor_firmware out-of-bounds write (dsa-2025-053)

A vulnerability, which was classified as critical, was found in Dell ControlVault3 and ControlVault3 Plus. Affected is the function cv_upgrade_sensor_firmware. The manipulation leads to out-of-bounds write.

This vulnerability is traded as CVE-2025-25050. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.