D
ell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Elevation of Privileges and Unauthorized Access.
References
| Link | Resource |
|---|---|
| https://www.dell.com/support/kbdoc/en-us/000359619/dsa-2025-331 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
15 Jan 2026, 15:11
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.dell.com/support/kbdoc/en-us/000359619/dsa-2025-331 - Vendor Advisory | |
| CPE | cpe:2.3:h:dell:pro_24_all-in-one:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_3000_tc:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_tower_qct1250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:precision_3260_compact:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_16_plus_pb16250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_7020:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5530:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_16_pc16250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_max_16_plus:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_all-in-one_7410:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5540:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_3450:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5550:-:*:*:*:*:*:*:* cpe:2.3:h:dell:wyse_5070_extended_thin_client:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_3440:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_5400_all-in-one:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_micro_plus_7010:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5450:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_3420:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5520:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_rugged_14_rb14250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_5440:-:*:*:*:*:*:*:* cpe:2.3:h:dell:optiplex_all-in-one_7420:-:*:*:*:*:*:*:* cpe:2.3:h:dell:wyse_5070_thin_client:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_slim_low_sff:-:*:*:*:*:*:*:* cpe:2.3:h:dell:wyse_5470_all-in-one_thin_client:-:*:*:*:*:*:*:* cpe:2.3:o:dell:thinos:*:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_rugged_13_ra13250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_14_pc14250:-:*:*:*:*:*:*:* cpe:2.3:h:dell:latitude_3330:-:*:*:*:*:*:*:* cpe:2.3:h:dell:pro_max_14:-:*:*:*:*:*:*:* cpe:2.3:h:dell:wyse_5470_mtc:-:*:*:*:*:*:*:* cpe:2.3:h:dell:precision_3280:-:*:*:*:*:*:*:* |
|
| First Time |
Dell pro Max 16 Plus
Dell pro 16 Plus Pb16250 Dell wyse 5070 Extended Thin Client Dell optiplex Micro Plus 7010 Dell latitude 5450 Dell optiplex 7020 Dell Dell latitude 5520 Dell optiplex All-in-one 7410 Dell latitude 3440 Dell precision 3280 Dell precision 3260 Compact Dell pro 16 Pc16250 Dell optiplex 3000 Tc Dell pro Tower Qct1250 Dell latitude 3420 Dell pro Slim Low Sff Dell pro Rugged 14 Rb14250 Dell wyse 5470 Mtc Dell optiplex 5400 All-in-one Dell pro 14 Pc14250 Dell wyse 5470 All-in-one Thin Client Dell pro Rugged 13 Ra13250 Dell latitude 5530 Dell latitude 5440 Dell latitude 3450 Dell thinos Dell optiplex All-in-one 7420 Dell pro Max 14 Dell latitude 3330 Dell latitude 5540 Dell pro 24 All-in-one Dell wyse 5070 Thin Client Dell latitude 5550 |
29 Aug 2025, 16:24
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-08-27 14:15
Updated : 2026-01-15 15:11
NVD link : CVE-2025-43729
Mitre link : CVE-2025-43729
CVE.ORG link : CVE-2025-43729
JSON object : View
Products Affected
- optiplex_3000_tc
- wyse_5070_extended_thin_client
- pro_16_pc16250
- optiplex_7020
- pro_max_16_plus
- latitude_3440
- precision_3280
- latitude_5530
- precision_3260_compact
- latitude_5450
- latitude_5540
- pro_16_plus_pb16250
- latitude_3330
- pro_14_pc14250
- pro_max_14
- latitude_3420
- optiplex_all-in-one_7420
- optiplex_micro_plus_7010
- wyse_5470_mtc
- wyse_5070_thin_client
- optiplex_5400_all-in-one
- thinos
- wyse_5470_all-in-one_thin_client
- pro_slim_low_sff
- latitude_5520
- pro_tower_qct1250
- latitude_5440
- latitude_3450
- pro_rugged_14_rb14250
- pro_rugged_13_ra13250
- latitude_5550
- pro_24_all-in-one
- optiplex_all-in-one_7410
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource