CVE-2025-43914
Essential information
- Published
- 07/10/2025 18:16
- Modified
- 08/10/2025 19:38
- Author
- —
- Creator
- —
- CVSS
- 7.5 HIGH (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- LOCAL
- Attack complexity
- HIGH
- Privileges required
- LOW
- User interaction
- REQUIRED
- Scope
- CHANGED
- Confidentiality impact
- HIGH
- Integrity impact
- HIGH
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
Dell PowerProtect Data Domain BoostFS for Linux Ubuntu systems of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access.
NVD status
- Status
- Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| dell / powerprotect data domain boostfs | cpe:2.3:a:dell:powerprotect_data_domain_boostfs:7.7.1.0-8.3.0.15:*:*:*:*:*:*:* |
| dell / powerprotect data domain boostfs | cpe:2.3:a:dell:powerprotect_data_domain_boostfs:8.3.1.0:*:*:*:*:*:*:* |
| dell / powerprotect data domain boostfs | cpe:2.3:a:dell:powerprotect_data_domain_boostfs:7.13.1.0-7.13.1.30:*:*:*:*:*:*:* |
| dell / powerprotect data domain boostfs | cpe:2.3:a:dell:powerprotect_data_domain_boostfs:7.10.1.0-7.10.1.60:*:*:*:*:*:*:* |