FKIE_CVE-2025-43882
Vulnerability from fkie_nvd - Published: 2025-08-27 14:15 - Updated: 2026-01-15 14:58
Severity ?
Summary
Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Unauthorized Access.
References
| URL | Tags | ||
|---|---|---|---|
| security_alert@emc.com | https://www.dell.com/support/kbdoc/en-us/000359619/dsa-2025-331 | Vendor Advisory |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dell:thinos:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D06C2C8B-6EBA-4C1C-8D6B-BB92F3BFCD95",
"versionEndExcluding": "2508",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dell:latitude_3330:-:*:*:*:*:*:*:*",
"matchCriteriaId": "52B5397C-6646-4EF5-894A-156AB6704295",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_3420:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7FB6E60F-F100-42BF-BC38-A38620EF8D2C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_3440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31C78A9B-65B4-4213-9A96-4E57CFA5B195",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_3450:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C087B85D-2F09-49E5-8BE9-DE724B7D5BFB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "84EC8EA3-A91D-4D3B-B1A5-D650A526CAAE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5450:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3DAF60D4-BDA2-43ED-802D-CE3ACB548693",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5520:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2AC36F7-FC4B-4CA4-91F3-8337C8F34681",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5530:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5EB8E326-0B12-4889-A7D2-AFFEAFBAD6AF",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5540:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2B13569-D3F7-4847-B2BE-6BC414F8FC52",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:latitude_5550:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1FD13310-CCC0-490C-A959-42EF8EC41232",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_3000_tc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8FA3CCBF-5DA1-4561-A933-FA24E71E683A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_5400_all-in-one:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D08E685B-A29C-482E-989C-083B83E7C5CE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_7020:-:*:*:*:*:*:*:*",
"matchCriteriaId": "84533BD1-3A0B-463D-A3CB-0B3DE816235E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_all-in-one_7410:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9B59560F-34A6-4B29-94B7-D04CDBA61A84",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_all-in-one_7420:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BCF051C7-F440-449B-81BC-761D6681834D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:optiplex_micro_plus_7010:-:*:*:*:*:*:*:*",
"matchCriteriaId": "81EBA40C-36F9-4790-9369-6DEDCBB1EB26",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:precision_3260_compact:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63A76C54-765B-4B50-AACB-E1AE80666325",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:precision_3280:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E7DFA74C-83F0-4E7D-95DF-821D9F5E265E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_14_pc14250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4301C860-38AC-402A-85D8-7C7401DCD4AB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_16_pc16250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D6331156-5254-4485-B893-98066F6AC081",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_16_plus_pb16250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "607B9989-E5E9-48D7-B4DD-5EE6C28A89F2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_24_all-in-one:-:*:*:*:*:*:*:*",
"matchCriteriaId": "70A7C423-66F8-4C30-9CBC-60402B0FE604",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_max_14:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0568C3D3-1E10-4612-B4F1-C2958908004B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_max_16_plus:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8C0A51D1-E96D-470F-A13A-C3FE6BBF4D01",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_rugged_13_ra13250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "291A5F5C-D7B1-4745-A885-E7C5136D5302",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_rugged_14_rb14250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "04BC32D4-43B9-4243-9762-905D4C332AD6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_slim_low_sff:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ABBEAB89-7C14-4578-8DB8-7D208CE0AAD5",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:pro_tower_qct1250:-:*:*:*:*:*:*:*",
"matchCriteriaId": "808A8143-DE7B-45BA-BDCA-203CFD0B4279",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:wyse_5070_extended_thin_client:-:*:*:*:*:*:*:*",
"matchCriteriaId": "52E907D0-84D2-46F4-A325-3E26347CBDAC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1664E2E-057D-4A8F-B8FC-73EC25D48DBC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:wyse_5470_all-in-one_thin_client:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3929B7A4-D181-4258-8722-57A751DB4CCC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:dell:wyse_5470_mtc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6819DA6E-39DD-4D5A-B4A3-A3816F7A2343",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Unauthorized Access."
},
{
"lang": "es",
"value": "Dell ThinOS 10, versiones anteriores a la 2508_10.0127, contiene una vulnerabilidad de propiedad no verificada. Un atacante local con pocos privilegios podr\u00eda explotar esta vulnerabilidad y provocar acceso no autorizado."
}
],
"id": "CVE-2025-43882",
"lastModified": "2026-01-15T14:58:06.550",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "security_alert@emc.com",
"type": "Secondary"
}
]
},
"published": "2025-08-27T14:15:51.320",
"references": [
{
"source": "security_alert@emc.com",
"tags": [
"Vendor Advisory"
],
"url": "https://www.dell.com/support/kbdoc/en-us/000359619/dsa-2025-331"
}
],
"sourceIdentifier": "security_alert@emc.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-283"
}
],
"source": "security_alert@emc.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…