Algorithm Downgrade Vulnerability in Dell NetWorker Affects Data Security
CVE-2025-36582

4.8MEDIUM

Key Information:

Vendor

Dell

Status
Vendor
CVE Published:
1 July 2025

What is CVE-2025-36582?

Dell NetWorker versions 19.12.0.1 and earlier are susceptible to an Algorithm Downgrade vulnerability that could allow an unauthenticated remote attacker to exploit the system. By manipulating the algorithm negotiation process, an attacker may gain unauthorized access to sensitive information, leading to potential data breaches. It is crucial for users to update their systems to mitigate the risks associated with this vulnerability.

Affected Version(s)

NetWorker < 19.13

References

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-36582 : Algorithm Downgrade Vulnerability in Dell NetWorker Affects Data Security