Main Vulnerability Database SB2025060239

SB2025060239 - Privilege escalation in Dell Encryption Admin Utilities

Published: June 2, 2025

Security Bulletin ID SB2025060239

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Link following (CVE-ID: CVE-2025-36564)

<p>The vulnerability allows a local user to escalate privileges on the system.</p>

<p>The vulnerability exists due to an insecure link following issue. A local user can create a specially crafted symbolic link to a critical file on the system and overwrite it with privileges of the application.</p>

Remediation

Install update from vendor's website.

References

https://www.dell.com/support/kbdoc/nl-nl/000325203/dsa-2025-224