- Description
- Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and Elevation of Privileges.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
- Products
- supportassist_os_recovery
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- Hype score
- Not currently trending
🚨 CVE-2025-22480 🔴 HIGH (7) 🏢 Dell - Dell SupportAssist OS Recovery 🏗️ N/A 🔗 https://t.co/tZs79TVdTC #CyberCron #VulnAlert https://t.co/yvBBso7GPv
@cybercronai
17 Feb 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-22480 Dell SupportAssist OS Recovery versions prior to 5.5.13.1 contain a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially … https://t.co/J40pA6PH31
@CVEnew
13 Feb 2025
132 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
New post from https://t.co/uXvPWJy6tj (CVE-2025-22480 | Dell SupportAssist OS Recovery prior 5.5.13.1 Symbolic Links symlink (dsa-2025-051)) has been published on https://t.co/OE13XORmD8
@WolfgangSesin
13 Feb 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:supportassist_os_recovery:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87DC31FF-58B3-4831-8B05-EE80478DC025",
"versionEndExcluding": "5.5.13.1"
}
],
"operator": "OR"
}
]
}
]