CVE-2025-22480 | Dell SupportAssist OS Recovery prior 5.5.13.1 Symbolic Links symlink (dsa-2025-051)

Posted by Angelo Barbosa | Feb 13, 2025 | CVE

A vulnerability was found in Dell SupportAssist OS Recovery. It has been rated as critical. Affected by this issue is some unknown functionality of the component Symbolic Links Handler. The manipulation leads to symlink following.

This vulnerability is handled as CVE-2025-22480. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-22480 | Dell SupportAssist OS Recovery prior 5.5.13.1 Symbolic Links symlink (dsa-2025-051)

Related Posts

VDB-273538 | FFmpeg 402d98c9d467dff6931d906ebb732b9a00334e0b get_bits.h get_bits_long stack-based overflow

CVE-2023-51750 | ScaleFusion 10.5.2 File Download Privilege Escalation

CVE-2023-7300 | Huawei HarmonyOS AILife Solution AILife Audio Service path traversal

CVE-2024-25625 | Pimcore admin-ui-classic-bundle up to 1.3.3 HTTP Header invitationLinkAction Host injection