CVE-2025-21111
HIGHDell VxRail <8.0.312 - Info Disclosure
Title source: llmDescription
Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
Scores
CVSS v3
7.5
EPSS
0.0005
EPSS Percentile
13.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Classification
CWE
CWE-522
CWE-256
Status
published
Affected Products (42)
dell/vxrail_d560_firmware
< 8.320
dell/vxrail_d560f_firmware
< 8.320
dell/vxrail_e460_firmware
< 8.320
dell/vxrail_e560_firmware
< 8.320
dell/vxrail_e560_vcf_firmware
< 8.320
dell/vxrail_e560f_firmware
< 8.320
dell/vxrail_e560f_vcf_firmware
< 8.320
dell/vxrail_e560n_firmware
< 8.320
dell/vxrail_e560n_vcf_firmware
< 8.320
dell/vxrail_e660_firmware
< 8.320
dell/vxrail_e660f_firmware
< 8.320
dell/vxrail_e660n_firmware
< 8.320
dell/vxrail_e665_firmware
< 8.320
dell/vxrail_e665f_firmware
< 8.320
dell/vxrail_e665n_firmware
< 8.320
... and 27 more
Timeline
Published
Jan 08, 2025
Tracked Since
Feb 18, 2026