Primary

Context

Dell Encryption Improper Link Resolution Vulnerability Allowing Information Tampering

Vulnerability

Patched

A vulnerability exists in Dell Encryption versions prior to 11.12.1, related to improper link resolution before file access, commonly referred to as 'link following'. This vulnerability allows a low-privileged attacker with local access to potentially manipulate information. The issue arises during the installation process of versions earlier than 11.12.1, not in the installed application itself.

Impact

Exploitation of this vulnerability could lead to unauthorized information tampering.

Remediation

Users can upgrade to Dell Encryption version 11.12.1 or later to address this vulnerability. Instructions for downloading the update are available on the Dell Support website.

Added: Dec 9, 2025, 10:59 PM

Updated: Dec 9, 2025, 10:59 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

3.5

remediation

7.7

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

0.6

exploitability

3.5

remediation

7.7

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell Encryption Improper Link Resolution Vulnerability Allowing Information Tampering

Vulnerability

Impact

Remediation

Affected Products

Dell Encryption

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating