CVE-2025-26332

Published: Jul 30, 2025Modified: Jan 14, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure. The attacker may be able to use the exposed credentials to access the vulnerable application with privileges of the compromised account.

Affected (2)

Products: Dell: Techadvisor, Xtremio Management Server

2 products

Xtremio Management Server

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dell Techadvisor	From 2.6 to 3.4
Dell Xtremio Management Server	Before 6.4.3

Running on/with	Platform Versions
Dell Xtremio X2	All versions

Related CWEs

Insertion of Sensitive Information into Log File

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

References (1)

https://www.dell.com/support/kbdoc/en-us/000337241/dsa-2025-108-security-update-for-dell-emc-xtremio-x2

Source: security_alert@emc.com

Vendor Advisory

Timeline

No history available yet.