CVE-2025-21102
moderate-risk
Published 2025-01-08
Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
Do I need to act?
-
0.05% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
LOCAL
/ HIGH complexity
Affected Products (20)
Vxrail D560 Firmware
Vxrail D560F Firmware
Vxrail E460 Firmware
Vxrail E560 Firmware
Vxrail E560 Vcf Firmware
Vxrail E560F Firmware
Vxrail E560F Vcf Firmware
Vxrail E560N Firmware
Vxrail E560N Vcf Firmware
Vxrail E660 Firmware
Vxrail E660F Firmware
Vxrail E660N Firmware
Vxrail E665 Firmware
Vxrail E665F Firmware
Vxrail E665N Firmware
Vxrail G560 Firmware
Vxrail G560 Vcf Firmware
Vxrail G560F Firmware
Vxrail P470 Firmware
Vxrail P570 Firmware
Affected Vendors
References (1)
44
/ 100
moderate-risk
Severity
20/34 · Moderate
Exploitability
0/34 · Minimal
Exposure
24/34 · High