Vulnerability Details CVE-2025-36611
Dell Encryption and Dell Security Management Server, versions prior to 11.11.0, contain an Improper Link Resolution Before File Access ('Link Following') Vulnerability. A local malicious user could potentially exploit this vulnerability, leading to privilege escalation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.8%
CVSS Severity
CVSS v3 Score 7.3
Products affected by CVE-2025-36611
-
cpe:2.3:a:dell:encryption:-
-
cpe:2.3:a:dell:encryption:10.0.0
-
cpe:2.3:a:dell:encryption:10.0.1
-
cpe:2.3:a:dell:encryption:10.4.0
-
cpe:2.3:a:dell:encryption:10.7.0
-
cpe:2.3:a:dell:encryption:10.8
-
cpe:2.3:a:dell:encryption:11.8.1
-
cpe:2.3:a:dell:encryption:11.9.0
-
cpe:2.3:a:dell:encryption:8.0.0
-
cpe:2.3:a:dell:encryption:8.15.0
-
cpe:2.3:a:dell:encryption:8.16.0
-
cpe:2.3:a:dell:encryption:8.7.0
-
cpe:2.3:a:dell:security_management_server:10.2.0
-
cpe:2.3:a:dell:security_management_server:11.8.1
-
cpe:2.3:a:dell:security_management_server:11.9.0