CVE-2025-24922 Dell ControlVault3/ControlVault3 Plus securebio_identify stack-based buffer overflow vulnerability

A stack-based buffer overflow vulnerability exists in the securebioidentify functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A specially crafted malicious cvobject can lead to a arbitrary code execution. An attacker can issue an API call to...

CVE-2025-24922 Dell ControlVault3/ControlVault3 Plus securebio_identify stack-based buffer overflow vulnerability

A stack-based buffer overflow vulnerability exists in the securebioidentify functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A specially crafted malicious cvobject can lead to a arbitrary code execution. An attacker can issue an API call to...

CVE-2025-24922

CVE-2025-24922 is a stack-based buffer overflow in the Dell ControlVault3/ControlVault3 Plus securebio_identify path. TALOS and Red Hat/NVD references confirm vulnerability exists in ControlVault firmware prior to 5.15.10.14 (Dell CV3) or 6.2.26.36 (CV3 Plus). The flaw is triggered by a crafted c...

CVE-2025-24311 Dell ControlVault3/ControlVault3 Plus cv_send_blockdata out-of-bounds read vulnerability

An out-of-bounds read vulnerability exists in the cvsendblockdata functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A specially crafted ControlVault API call can lead to an information leak. An attacker can issue an API call to trigger this...

Dell ControlVault3和Dell ControlVault3 Plus 代码问题漏洞

Dell ControlVault3 and Dell ControlVault3 Plus are both hardware-based security solutions from Dell, Inc. A code issue vulnerability exists in Dell ControlVault3 versions prior to 5.15.10.14 and Dell ControlVault3 Plus versions prior to 6.2.26.36, which stems from a deserialization vulnerability ...

Dell ControlVault3和Dell ControlVault3 Plus 安全漏洞

Dell ControlVault3 and Dell ControlVault3 Plus are both hardware-based security solutions from Dell USA. A security vulnerability exists in Dell ControlVault3 versions prior to 5.15.10.14 and Dell ControlVault3 Plus versions prior to 6.2.26.36, which stems from an arbitrary release vulnerability ...

Dell ControlVault3和Dell ControlVault3 Plus 缓冲区错误漏洞

Dell ControlVault3 and Dell ControlVault3 Plus are both hardware-based security solutions from Dell USA. A buffer error vulnerability exists in Dell ControlVault3 versions prior to 5.15.10.14 and Dell ControlVault3 Plus versions prior to 6.2.26.36, which stems from an out-of-bounds write to the...

Dell ControlVault3和Dell ControlVault3 Plus 安全漏洞

Dell ControlVault3 and Dell ControlVault3 Plus are both hardware-based security solutions from Dell USA. A security vulnerability exists in Dell ControlVault3 versions prior to 5.15.10.14 and Dell ControlVault3 Plus versions prior to 6.2.26.36, which stems from a stack buffer overflow in the...

PT-2025-25445 · Dell · Dell Controlvault3 +1

Name of the Vulnerable Software and Affected Versions: Dell ControlVault3 versions prior to 5.15.10.14 Dell ControlVault3 Plus versions prior to 6.2.26.36 Description: An out-of-bounds read vulnerability exists in the cv send blockdata functionality. A specially crafted ControlVault API call can...

PT-2025-25446 · Dell · Dell Controlvault3 +1

Name of the Vulnerable Software and Affected Versions: Dell ControlVault3 versions prior to 5.15.10.14 Dell ControlVault3 Plus versions prior to 6.2.26.36 Description: A stack-based buffer overflow vulnerability exists in the securebio identify functionality. A specially crafted malicious cv obje...

PT-2025-25449

Name of the Vulnerable Software and Affected Versions: Dell ControlVault3 versions prior to 5.15.10.14 Dell ControlVault3 Plus versions prior to 6.2.26.36 Description: A deserialization of untrusted input vulnerability exists in the cvhDecapsulateCmd functionality. A specially crafted ControlVaul...

PT-2025-25450 · Dell · Dell Controlvault3 +1

Name of the Vulnerable Software and Affected Versions: Dell ControlVault3 versions prior to 5.15.10.14 Dell ControlVault3 Plus versions prior to 6.2.26.36 Description: An arbitrary free vulnerability exists in the cv close functionality of Dell ControlVault3 and Dell ControlVault3 Plus. A special...