CVE-2025-32744

Published: Jul 21, 2025Modified: Aug 6, 2025

6.6

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

Exploitability: 2.3 / Impact: 3.7

Source: security_alert@emc.com (Secondary)

Description

Dell AppSync, version(s) 4.6.0.0, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote execution.

Affected (1)

Products: Dell: Appsync

Dell

1 product

Appsync

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Dell Appsync	Before 4.6.0.4

Related CWEs

CWE-434

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (1)

https://www.dell.com/support/kbdoc/en-us/000345331/dsa-2025-277-security-update-for-dell-appsync-vulnerabilities

Source: security_alert@emc.com

Vendor Advisory

Timeline

No history available yet.