Severity
High
Analysis Summary
CVE-2025-46637 CVSS:7.3
Dell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A local malicious user could potentially exploit this vulnerability, leading to Elevation of privileges.
CVE-2025-46636 CVSS:6.6
Dell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering.
Impact
- Gain Access
- Privilege Escalation
Indicators of Compromise
CVE
CVE-2025-46637
CVE-2025-46636
Affected Vendors
- Dell
Affected Products
- Dell Encryption 11.12.1
Remediation
Refer to Dell Security Advisory for patch, upgrade, or suggested workaround information.