The vulnerability of the SmartFabric OS10 network operating system, related to the lack of data cleaning at the management level, allows a perpetrator to execute arbitrary commands.

🗓️ 26 Mar 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

SmartFabric operating system data at management level is not cleaned, allowing arbitrary command execution.

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2024-48015	17 Mar 202518:15	–	attackerkb
Circl	CVE-2024-48015	17 Mar 202518:38	–	circl
CNNVD	Dell SmartFabric OS10 命令注入漏洞	17 Mar 202500:00	–	cnnvd
CNVD	Dell SmartFabric OS10 Command Injection Vulnerability	19 Mar 202500:00	–	cnvd
CVE	CVE-2024-48015	17 Mar 202517:16	–	cve
Cvelist	CVE-2024-48015	17 Mar 202517:16	–	cvelist
EUVD	EUVD-2025-6538	3 Oct 202520:07	–	euvd
NVD	CVE-2024-48015	17 Mar 202518:15	–	nvd
OSV	CVE-2024-48015	17 Mar 202518:15	–	osv
Positive Technologies	PT-2025-11522 · Dell · Os10	8 Oct 202400:00	–	ptsecurity

Vulners

Node

dell_technologies smartfabric_os10Range10.5.4.0–10.5.4.14

OR

dell_technologies smartfabric_os10Range10.5.5.0–10.5.5.13

OR

dell_technologies smartfabric_os10Range10.6.0.0–10.6.0.2

OR

dell_technologies smartfabric_os10Range10.5.6.0–10.5.6.8

Source	Link
dell	www.dell.com/support/kbdoc/en-us/000289970/dsa-2025-070-security-update-for-dell-networking-os10-vulnerabilities
dell	www.dell.com/support/kbdoc/en-us/000293638/dsa-2025-069-security-update-for-dell-networking-os10-vulnerabilities
dell	www.dell.com/support/kbdoc/en-us/000294091/dsa-2025-079-security-update-for-dell-networking-os10-vulnerabilities
dell	www.dell.com/support/kbdoc/en-us/000295014/dsa-2025-068-security-update-for-dell-networking-os10-vulnerabilities
web	www.web.nvd.nist.gov/view/vuln/detail

26 Mar 2025 00:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 36.7

CVSS 26.8

EPSS0.00097

SmartFabric operating system management data cleaning arbitrary command execution