Incorrect Permission Assignment Vulnerability in Dell ThinOS
CVE-2025-43729

7.8HIGH

Key Information:

Vendor: Dell
Status: Thinos 10
Vendor: CVE Published:; 27 August 2025

What is CVE-2025-43729?

Dell ThinOS 10, prior to version 2508_10.0127, is impacted by a vulnerability stemming from an Incorrect Permission Assignment for Critical Resource. This flaw could allow a local low-privileged attacker to exploit the system, potentially leading to Elevation of Privileges and unauthorized access to sensitive resources. Users of affected versions are encouraged to review security measures and apply available updates.

Affected Version(s)

ThinOS 10 < 2508_10.0127

References

https://www.dell.com/support/kbdoc/en-us/000359619/dsa-20...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2025
Vulnerability Reserved
Apr 17, 2025