HIGH🇵🇱 Wersja polska

CVE-2025-27688

CVSS 7.8v3.1pub. 2025-03-18upd. 2025-07-01

Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Dell Latitude 3420

    HW
    Dell
    wszystkie wersje
  • Dell Latitude 3440

    HW
    Dell
    wszystkie wersje
  • Dell Latitude 5440

    HW
    Dell
    wszystkie wersje
  • Dell Latitude 5450

    HW
    Dell
    wszystkie wersje
  • Dell Optiplex 3000 Thin Client

    HW
    Dell
    wszystkie wersje
  • Dell Optiplex 5400 All In One

    HW
    Dell
    wszystkie wersje
  • Dell Optiplex 7410 All In One

    HW
    Dell
    wszystkie wersje
  • Dell Optiplex 7420 All In One

    HW
    Dell
    wszystkie wersje
  • Dell Thinos

    OS
    Dell
    ≤ 2408
  • Dell Wyse 5070 Thin Client

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5470 All In One Thin Client

    HW
    Dell
    wszystkie wersje
  • Dell Wyse 5470 Mobile Thin Client

    HW
    Dell
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-43728CRITICAL9.6PL ✓ten sam produkt

Obejście mechanizmu ochrony w Dell ThinOS 10 (Auth Bypass)

CVE-2026-40715HIGH7.8ten sam produkt

Dell ThinOS 10, versions prior to ThinOS10 2602_10.0765, contain an Improper Access Control vulnerability. A l...

CVE-2026-23862HIGH7.8ten sam produkt

Dell ThinOS 10 versions prior to ThinOS 2602_10.0573, contain an Improper Neutralization of Special Elements u...

CVE-2025-43729HIGH7.8ten sam produkt

Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resou...

CVE-2025-43730HIGH8.4ten sam produkt

Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Delimiters in ...