CVE-2025-36609

Published: Jul 30, 2025Modified: Aug 6, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

Affected (1)

Products: Dell: Smartfabric Os10

Dell

1 product

Smartfabric Os10

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Dell Smartfabric Os10	Before 10.6.0.5

Related CWEs

CWE-259

Use of Hard-coded Password

The product contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.

References (1)

https://www.dell.com/support/kbdoc/en-us/000346195/dsa-2025-259-security-update-for-dell-networking-os10-vulnerabilities

Source: security_alert@emc.com

Vendor Advisory

Timeline

No history available yet.