- Description
- Dell Data Lakehouse, versions prior to 1.6.0.0, contain(s) an Improper Access Control vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges. This vulnerability is considered Critical, as it may result in unauthorized access with elevated privileges, compromising system integrity and customer data. Dell recommends customers upgrade to the latest version at the earliest opportunity.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
- Products
- data_lakehouse
CVSS 3.1
- Type
- Primary
- Base score
- 7.2
- Impact score
- 5.9
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- security_alert@emc.com
- CWE-284
- Hype score
- Not currently trending
Warning: Critical improper access control in #Dell #DataLakehouse. CVE-2025-46608 CVSS: 9.1. A remote attacker can elevate their privileges and cause system compromise! More info in our advisory https://t.co/4BHzOKe6f3 #Patch
@CCBalert
14 Nov 2025
59 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2025-46608: CRITICAL] Critical vulnerability in older Dell Data Lakehouse versions (pre-1.6.0.0) could allow high privileged attackers to gain unauthorized access. Dell urges immediate upgrade.#cve,CVE-2025-46608,#cybersecurity https://t.co/H2NLeTeZXc https://t.co/4rjuYslta9
@CveFindCom
12 Nov 2025
39 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:data_lakehouse:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A873D8C3-8B5D-4C0F-98D7-E4849F5CC382",
"versionEndExcluding": "1.6.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]