CVE-2025-36573 PUBLISHED

Assigner: dell
Reserved: 15.04.2025 Published: 12.06.2025 Updated: 12.06.2025

Dell Smart Dock Firmware, versions prior to 01.00.08.01, contain an Insertion of Sensitive Information into Log File vulnerability. A user with local access could potentially exploit this vulnerability, leading to Information disclosure.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
CVSS Score: 7.1

Attack Vector	Local	Scope	Changed
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	Dell
Product	Smart Dock
Versions	Default: unaffected affected from N/A to 01.00.08.01 (excl.)

References

https://www.dell.com/support/kbdoc/en-us/000323183/dsa-2025-218

Problem Types

CWE-532: Insertion of Sensitive Information into Log File CWE