CVE-2025-46424

Dell CloudLink, versions prior to 8.2, contain use of a Cryptographic Primitive with a Risky Implementation vulnerability. A high privileged attacker could potentially exploit this vulnerability leading to Denial of service.

CVSS v3 6.7 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:cloudlink:*:*:*:*:*:*:*:*

History

07 Nov 2025, 17:59

Type	Values Removed	Values Added
CPE		cpe:2.3:a:dell:cloudlink::::::::
First Time		Dell Dell cloudlink
References	~~() https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities -~~	() https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities - Vendor Advisory

05 Nov 2025, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-11-05 17:15

Updated : 2025-11-07 17:59

NVD link : CVE-2025-46424

Mitre link : CVE-2025-46424

CVE.ORG link : CVE-2025-46424

JSON object : View

Products Affected

dell

cloudlink

CWE

CWE-1240

Use of a Cryptographic Primitive with a Risky Implementation

6.7 /10