Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-29986

Dell Common Event Enabler, version(s) CEE 9.0.0.0, contain(s) an Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Common Anti-Virus Agent (CAVA). An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

Published

2025-04-08T11:15:44.033

Last Modified

2025-07-15T16:08:19.583

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.3 (HIGH)

Weaknesses

Type: Primary
CWE-923

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	dell	common_event_enabler	9.0.0.0	Yes

References

https://www.dell.com/support/kbdoc/en-us/000303931/dsa-2025-158-security-update-for-dell-common-event-enabler-vulnerabilities Vendor Advisory ([email protected])