Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-36581

Dell PowerEdge Platform version(s) 14G AMD BIOS v1.25.0 and prior, contain(s) an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.

Published

2025-08-14T14:15:30.760

Last Modified

2026-01-14T17:55:12.090

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.8 (LOW)

Weaknesses

Type: Secondary
CWE-788
Type: Primary
CWE-119

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	dell	poweredge_r6415_firmware	< 1.26.0	Yes
Hardware	dell	poweredge_r6415	-	No
Operating System	dell	poweredge_r7415_firmware	< 1.26.0	Yes
Hardware	dell	poweredge_r7415	-	No
Operating System	dell	poweredge_r7425_firmware	≤ 1.26.0	Yes
Hardware	dell	poweredge_r7425	-	No

References

https://www.dell.com/support/kbdoc/en-us/000356405/dsa-2025-299-security-update-for-dell-poweredge-server-bios-for-an-access-of-memory-location-after-end-of-buffer-vulnerability Vendor Advisory ([email protected])