Dell Common Event Enabler Vulnerability in Common Anti-Virus Agent
CVE-2025-29985

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Common Event Enabler
Vendor: CVE Published:; 8 April 2025

Summary

The Dell Common Event Enabler's Common Anti-Virus Agent (CAVA) is exposed to an Initialization of a Resource with an Insecure Default vulnerability. This issue allows unauthenticated remote attackers to exploit the flaw, potentially gaining unauthorized access to critical resources. It is essential for users and organizations to assess their systems and apply the relevant updates to mitigate risks associated with this vulnerability. Detailed information can be found in Dell's security advisories.

Affected Version(s)

Common Event Enabler < 9.0.0.0

References

https://www.dell.com/support/kbdoc/en-us/000303931/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 8, 2025
Vulnerability Reserved
Mar 13, 2025