CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-22480

Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.2%

CVSS Severity

CVSS v3 Score 7.0

References

https://www.dell.com/support/kbdoc/en-us/000275712/dsa-2025-051

Products affected by CVE-2025-22480

Dell » Supportassist » Version: N/A

cpe:2.3:a:dell:supportassist:-
Dell » Supportassist » Version: 3.2.0.90

cpe:2.3:a:dell:supportassist:3.2.0.90

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-22480

Products

Pricing

Contact Us