Vulnerability Details CVE-2025-46602
Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.3%
CVSS Severity
CVSS v3 Score 4.4
Products affected by CVE-2025-46602
-
cpe:2.3:a:dell:supportassist_os_recovery:5.5.1
-
cpe:2.3:a:dell:supportassist_os_recovery:5.5.13.1
-
cpe:2.3:a:dell:supportassist_os_recovery:5.5.14.0