Overview A critical buffer overflow vulnerability, identified as CVE-2025-36553, has been discovered in Dell ControlVault3 and Dell ControlVault3 Plus. This flaw could allow an attacker to execute arbitrary code, potentially leading to system compromise. Immediate action is recommended to mitigate the risk. Technical Details The vulnerability resides within the CvManager functionality of Dell ControlVault3. Specifically, a specially crafted API call to the ControlVault can trigger a buffer overflow, leading to memory corruption. The affected products are: Dell ControlVault3 versions prior to 5.15.14.19 Dell ControlVault3 Plus versions prior to 6.2.36.47 An attacker can exploit this vulnerability by issuing a malformed API…
-
-
Overview A high-severity vulnerability, tracked as CVE-2025-36463, has been identified in the Broadcom Storage Adapter functionality within the Dell ControlVault3 and ControlVault3 Plus. Specifically, out-of-bounds read and write issues exist in the ControlVault WBDI Driver. Successful exploitation could lead to memory corruption and potentially a denial of service (DoS) condition. Dell has released patches to address this vulnerability. Technical Details The vulnerability resides within the WinBioControlUnit functionality of the Dell ControlVault3 and ControlVault3 Plus. The specific issue is triggered when a specially crafted WinBioControlUnit call is made to the StorageAdapter with the ControlCode WBIO_USH_ADD_RECORD (value 4). When SendBufferSize is greater…
-
Overview CVE-2025-36462 is a high-severity vulnerability affecting Dell ControlVault3 and ControlVault3 Plus. It involves out-of-bounds read and write issues within the Broadcom Storage Adapter functionality of the ControlVault WBDI Driver. A specially crafted WinBioControlUnit call can trigger memory corruption, potentially allowing an attacker to compromise the system. The vulnerability exists in Dell ControlVault3 versions prior to 5.15.14.19 and Dell ControlVault3 Plus versions prior to 6.2.36.47. Technical Details The root cause of CVE-2025-36462 lies in insufficient bounds checking when processing WinBioControlUnit calls within the StorageAdapter. Specifically, the vulnerability is triggered when the ControlCode is set to WBIO_USH_CREATE_CHALLENGE (value 3) and the…
-
Overview CVE-2025-36461 describes multiple out-of-bounds read and write vulnerabilities found in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3. Specifically, affected versions include Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. This high-severity vulnerability can lead to memory corruption, potentially allowing an attacker to gain unauthorized access or execute arbitrary code. Technical Details The vulnerability lies within the handling of WinBioControlUnit calls to the StorageAdapter. An attacker can trigger the out-of-bounds read and write conditions by crafting a specific API call with the ControlCode 0 (WBIO_USH_GET_TEMPLATE) and specific buffer sizes: Out-of-bounds Write: Occurs…
-
Overview CVE-2025-36460 is a high-severity vulnerability affecting Dell ControlVault3 and ControlVault3 Plus. This vulnerability stems from out-of-bounds read and write issues within the Broadcom Storage Adapter functionality of the ControlVault WBDI Driver. Exploitation of this vulnerability can lead to memory corruption. Technical Details The vulnerability resides in Dell ControlVault3 prior to version 5.15.14.19 and Dell ControlVault3 Plus prior to version 6.2.36.47. A specially crafted WinBioControlUnit call can trigger this vulnerability. Specifically, the vulnerability is triggered when submitting a WinBioControlUnit call to the StorageAdapter with the ControlCode WBIO_USH_GET_IDENTITY (value 2) and a ReceiveBufferSize between 4 and 80 (exclusive) i.e. 4
-
Overview A high-severity buffer overflow vulnerability, identified as CVE-2025-32089, has been discovered in Dell ControlVault3 and ControlVault3 Plus. This flaw allows for potential arbitrary code execution, making it imperative for Dell users to apply the necessary updates immediately. The vulnerability resides within the CvManager_SBI functionality of Dell ControlVault3 devices. Specifically, versions prior to 5.15.14.19 (ControlVault3) and 6.2.36.47 (ControlVault3 Plus) are affected. Exploitation involves crafting a malicious ControlVault API call to trigger the buffer overflow. Technical Details CVE-2025-32089 is a classic buffer overflow vulnerability. A specially crafted ControlVault API call exceeding the expected buffer size within the CvManager_SBI component can overwrite…
-
Overview A critical security vulnerability, identified as CVE-2025-31649, affects Dell ControlVault3 and ControlVault3 Plus. This vulnerability stems from a hard-coded password within the ControlVault WBDI Driver, potentially allowing attackers to execute privileged operations. Prompt action is recommended to mitigate this risk. Technical Details CVE-2025-31649 resides in the ControlVault WBDI Driver functionality of Dell ControlVault3 and ControlVault3 Plus. Specifically, a hard-coded password allows unauthorized access to privileged functionalities via the ControlVault API. An attacker can exploit this by crafting a specific API call that leverages the hard-coded credential to bypass security measures and execute unauthorized actions. The affected versions are Dell…
-
Overview CVE-2025-31361 is a high-severity privilege escalation vulnerability affecting Dell ControlVault3 and ControlVault3 Plus. This vulnerability exists within the WBDI Driver’s WBIO_USH_ADD_RECORD functionality and can be exploited by a local attacker to gain elevated privileges on a vulnerable system. Technical Details The vulnerability resides in the way the Dell ControlVault driver handles the WBIO_USH_ADD_RECORD functionality within the Windows Biometric Framework. Specifically, a specially crafted WinBioControlUnit call can be used to trigger the vulnerability. Prior to versions 5.15.14.19 (ControlVault3) and 6.2.36.47 (ControlVault3 Plus), insufficient validation of input parameters within the WBIO_USH_ADD_RECORD function allows an attacker to manipulate the system state and…
-
Overview A high-severity buffer overflow vulnerability, identified as CVE-2025-13305, has been discovered in several D-Link router models. This flaw affects D-Link DWR-M920, DWR-M921, DWR-M960, DIR-822K, and DIR-825M devices running firmware version 1.01.07. The vulnerability allows a remote attacker to potentially execute arbitrary code on the affected device. This article provides a detailed analysis of CVE-2025-13305, including technical specifics, potential impact, and recommended mitigation strategies. Technical Details The vulnerability resides within the handling of the host argument in the /boafrm/formTracerouteDiagnosticRun file. Improper input validation allows an attacker to inject an overly long string into the host parameter, leading to a buffer…
-
Overview A high-severity buffer overflow vulnerability, identified as CVE-2025-13304, has been discovered in several D-Link router models. This flaw could allow remote attackers to execute arbitrary code on affected devices. The vulnerability affects specific versions of D-Link DWR-M920, DWR-M921, DWR-M960, DWR-M961 and DIR-825M routers. Due to the public availability of exploit code, immediate action is recommended to mitigate potential risks. Technical Details The vulnerability resides within the `/boafrm/formPingDiagnosticRun` file of the affected D-Link router firmware. Specifically, it stems from insufficient validation of the `host` argument used in the Ping Diagnostic functionality. By manipulating this argument with an overly long string,…