CVE-2025-25050

Dell ControlVault3/ControlVault3 Plus are affected by CVE-2025-25050: an out-of-bounds write in cv_upgrade_sensor_firmware. Talos confirms vulnerable versions (e.g., CV firmware prior to 5.15.10.14 / 6.2.26.36) and describes a locally exploitable path via a crafted ControlVault API call, with CVS...