CVE-2025-21102
HIGHDell VxRail <7.0.532 - Info Disclosure
Title source: llmDescription
Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
Scores
CVSS v3
7.5
EPSS
0.0003
EPSS Percentile
9.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Classification
CWE
CWE-522
CWE-256
Status
published
Affected Products (42)
dell/vxrail_d560_firmware
< 7.0.533
dell/vxrail_d560f_firmware
< 7.0.533
dell/vxrail_e460_firmware
< 7.0.533
dell/vxrail_e560_firmware
< 7.0.533
dell/vxrail_e560_vcf_firmware
< 7.0.533
dell/vxrail_e560f_firmware
< 7.0.533
dell/vxrail_e560f_vcf_firmware
< 7.0.533
dell/vxrail_e560n_firmware
< 7.0.533
dell/vxrail_e560n_vcf_firmware
< 7.0.533
dell/vxrail_e660_firmware
< 7.0.533
dell/vxrail_e660f_firmware
< 7.0.533
dell/vxrail_e660n_firmware
< 7.0.533
dell/vxrail_e665_firmware
< 7.0.533
dell/vxrail_e665f_firmware
< 7.0.533
dell/vxrail_e665n_firmware
< 7.0.533
... and 27 more
Timeline
Published
Jan 08, 2025
Tracked Since
Feb 18, 2026