Improper Link Resolution Vulnerability in Dell Encryption and Security Management Server
CVE-2025-36611

7.3HIGH

Key Information:

Vendor: Dell
Status: Encryption; Security Management Server
Vendor: CVE Published:; 30 July 2025

What is CVE-2025-36611?

Dell Encryption and Dell Security Management Server prior to version 11.11.0 are susceptible to an Improper Link Resolution Before File Access vulnerability. This flaw could allow a local adversary to exploit the system, potentially leading to privilege escalation. It is crucial for users of affected products to review their systems and consider upgrading to the latest version to mitigate potential risks.

Affected Version(s)

Encryption NA < 11.11.0.1

Security Management Server NA < 11.11.0.2

References

https://www.dell.com/support/kbdoc/en-us/000347824/dsa-20...

vendor-advisory

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025