CVE-2025-29984 | THREATINT

Description

Dell Trusted Device, versions prior to 7.0.3.0, contain an Incorrect Default Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

PUBLISHED Reserved 2025-03-13 | Published 2025-04-15 | Updated 2025-04-16 | Assigner dell

MEDIUM: 6.7CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-284: Improper Access Control

Product status

Default status

unaffected

Any version before 7.0.3.0

affected

Credits

Dell Technologies would like to thank falconCorrup for reporting these issues. finder

References

www.dell.com/support/kbdoc/en-us/000299528/dsa-2025-151 vendor-advisory

cve.org (CVE-2025-29984)

nvd.nist.gov (CVE-2025-29984)

Download JSON