CVE-2025-23374 – Dell Enterprise SONiC Vulnerability

Severity

High

Analysis Summary

CVE-2025-23374

Dell Networking Switches running Enterprise SONiC OS, version(s) prior to 4.4.1 and 4.2.3, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure.

Impact

Information Disclosure

Indicators of Compromise

CVE

CVE-2025-23374

Affected Vendors

Dell

Affected Products

Dell Enterprise SoNiC OS 4.4.1
Dell Enterprise SoNiC OS 4.2.3

Remediation

Refer to Dell Security Advisory for patch, upgrade, or suggested workaround information.

Dell Security Advisory

RedLine Stealer – Active IOCs

Multiple Microsoft Products Vulnerabilities

CVE-2025-23374 – Dell Enterprise SONiC Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan