Dell Product Security Update Advisory

Feb 17 2025

Overview

We have released security updates to fix vulnerabilities in Dell products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-22399

Dell UCC Edge Version: ~3.0.0 (excluded)

CVE-2025-22480

Dell SupportAssist OS Recovery Version: ~5.5.13.1 (excluded)

Resolved Vulnerabilities

Blind SSRF vulnerability in Dell SupportAssist OS (CVE-2025-22399) via unauthenticated attacker with local access
Symbolic link attack vulnerability by an attacker with local access (CVE-2025-22480)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-22399

Dell UCC Edge version: 3.0.0 or at least

CVE-2025-22480

Dell SupportAssist OS Recovery Version: 5.5.13.1 or at least

References

[1] DSA-2025-043: Security Update for Dell UCC Edge Security Update for Multiple Vulnerabilities
https://dell.com/support/kbdoc/ko-kr/000279299/dsa-2025-043-security-update-for-dell-ucc-edge-security-update-for-multiple-vulnerabilities
[2] DSA-2025-051: Security Update for Dell SupportAssist OS Recovery for a Symbolic Link Attack Vulnerability
https://www.dell.com/support/kbdoc/ko-kr/000275712/dsa-2025-051

Dell Product Security Update Advisory

PostgreSQL Vulnerability Security Update Advisory (CVE-2025-1094)

F5 Product Security Update Advisory (CVE-2025-23412)

Tags:

PostgreSQL Vulnerability Security Update Advisory (CVE-2025-1094)

F5 Product Security Update Advisory (CVE-2025-23412)