Command Injection Vulnerability in Dell CloudLink by Dell Technologies
CVE-2025-30479

8.4HIGH

Key Information:

Vendor: Dell
Status: ClouD-Link
Vendor: CVE Published:; 5 November 2025

What is CVE-2025-30479?

Dell CloudLink, prior to version 8.2, has a vulnerability that allows a privileged user with a known password to execute commands on the system. This command injection flaw can lead to unauthorized control over the affected product, posing significant security risks for users and organizations relying on Dell CloudLink for their cloud management solutions.

Affected Version(s)

CloudLink < 8.2

References

https://www.dell.com/support/kbdoc/en-us/000384363/dsa-20...

vendor-advisory

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Nov 5, 2025
Vulnerability Reserved
Mar 23, 2025

JSON