CVE-2025-29986

CVSS 3.1 Score 8.3 of 10 (high)

Details

Published Apr 8, 2025

CWE ID 923

Summary

CVE-2025-29986 is a vulnerability affecting Dell Common Event Enabler (CEE), specifically versions 9.0.0.0. This issue involves an Improper Restriction of Communication Channel to Intended Endpoints flaw in the Common Anti-Virus Agent (CAVA). An attacker with remote access can potentially exploit this vulnerability, gaining unauthorized access to the system despite the lack of authentication. This weakness could pose significant risks to network security, underscoring the importance of promptly applying the necessary patches or mitigations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Dell Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/4SSGGY
https://www.cve.org/CVERecord?id=CVE-2025-29986
https://nvd.nist.gov/vuln/detail/CVE-2025-29986

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2025-29986

CVSS 3.1 Score 8.3 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations