CVE-2025-46608 | THREATINT

Description

Dell Data Lakehouse, versions prior to 1.6.0.0, contain(s) an Improper Access Control vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges. This vulnerability is considered Critical, as it may result in unauthorized access with elevated privileges, compromising system integrity and customer data. Dell recommends customers upgrade to the latest version at the earliest opportunity.

PUBLISHED Reserved 2025-04-25 | Published 2025-11-12 | Updated 2025-11-13 | Assigner dell

CRITICAL: 9.1CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-284: Improper Access Control

Product status

Default status

unaffected

Any version before 1.6.0.0

affected

References

www.dell.com/...dell-data-lakehouse-multiple-vulnerabilities vendor-advisory

cve.org (CVE-2025-46608)

nvd.nist.gov (CVE-2025-46608)

Download JSON