CVE-2025-21117

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Feb 5, 2025

CWE ID 672

Summary

CVE-2025-21117 is a newly identified vulnerability affecting Dell Avamar, version 19.4 and later. This issue involves an access token reuse flaw in the Avamar User Interface (AUI). A local attacker with low privileges can take advantage of this vulnerability, ultimately gaining the ability to fully impersonate the user, which may result in unauthorized access and potential data breaches. It is crucial for organizations using Dell Avamar to update their systems to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3FOmfF
https://www.cve.org/CVERecord?id=CVE-2025-21117
https://nvd.nist.gov/vuln/detail/CVE-2025-21117

Back to Vulnerability Database

CVE-2025-21117

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations