Dell Technologies disclosed a critical security vulnerability in its Data Lakehouse platform, tracked as CVE-2025-46608. The vulnerability allows remote attackers to escalate privileges, compromising system integrity. With a CVSS score of 9.1, it falls into the critical severity category, affecting all versions before 1.6.0.0. This flaw originates from improper access control, allowing highly privileged attackers to exploit the weakness without user interaction, making it particularly dangerous. Successful exploitation could grant unauthorized access, leading to potential data modification or system operations interruption. Dell strongly recommends all customers upgrade to version 1.6.0.0 or later, as it addresses this vulnerability. Users on affected versions can seek assistance from Dell Technical Support and reference advisory DSA-2025-375 for help with the upgrade process.
Given the nature and impact of this vulnerability, it poses a significant threat to organizations using the Data Lakehouse platform. The ability for attackers to gain high-level access without complex entry means that swift actions must be taken to protect sensitive information and maintain the integrity of systems. The incident underscores the crucial need for timely software updates and vigilant security practices to mitigate such risks.
👉 Pročitaj original: Cyber Security News
