Primary

Context

Dell AppSync Symlink Following Vulnerability Allowing Information Tampering

Vulnerability

Patched

A symlink following vulnerability has been identified in Dell AppSync version 4.6.0. This vulnerability allows a low privileged attacker with local access to manipulate information by exploiting the way the application handles UNIX symbolic links.

Impact

Exploitation of this vulnerability could lead to unauthorized information modification.

Remediation

Users can upgrade to Dell AppSync version 4.6.1.0 or later to address this vulnerability. Drivers for the updated version are available on the Dell Support website.

Added: Apr 1, 2026, 1:21 PM

Updated: Apr 1, 2026, 1:21 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.5

exploitability

3.5

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.5

exploitability

3.5

remediation

7.7

relevance

5.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell AppSync Symlink Following Vulnerability Allowing Information Tampering

Vulnerability

Impact

Remediation

Affected Products

Dell AppSync

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating