PT-2025-45349 · Dell · Dell Integrated Dell Remote Access Controller 9+5
Published
2025-11-06
·
Updated
2026-01-21
·
CVE-2025-22397
CVSS v3.1
6.7
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181
Dell Integrated Dell Remote Access Controller 15G and 16G versions 6.10.80.00 through 7.20.10.50
Dell Integrated Dell Remote Access Controller 10, 17G versions prior to 1.20.25.00
Description
Dell Integrated Dell Remote Access Controller contains an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') issue. A high privileged attacker with remote access could potentially exploit this, leading to Unauthorized access.
Recommendations
Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181: Update to version 7.00.00.181 or later.
Dell Integrated Dell Remote Access Controller 15G and 16G versions 6.10.80.00 through 7.20.10.50: Update to a version later than 7.20.10.50.
Dell Integrated Dell Remote Access Controller 10, 17G versions prior to 1.20.25.00: Update to version 1.20.25.00 or later.
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Integrated Dell Remote Access Controller 10
Dell Integrated Dell Remote Access Controller 14G
Dell Integrated Dell Remote Access Controller 15G
Dell Integrated Dell Remote Access Controller 16G
Dell Integrated Dell Remote Access Controller 17G
Dell Integrated Dell Remote Access Controller 9