CVE-2025-22480

Name of the Vulnerable Software and Affected Versions: Dell SupportAssist OS Recovery versions prior to 5.5.13.1

Description: The issue concerns a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary file deletion and elevation of privileges.

Recommendations: For versions prior to 5.5.13.1, update to version 5.5.13.1 or later to resolve the issue. As a temporary workaround, consider restricting local access to minimize the risk of exploitation.