CVE-2025-29986

High CVSS 8.3

Overview

Dell Common Event Enabler, version(s) CEE 9.0.0.0, contain(s) an Improper Restriction of Communication Channel to Intended Endpoints vulnerability in the Common Anti-Virus Agent (CAVA). An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

CWE: CWE-923 Published: 2025-04-08T11:15:44.033

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 8.3 (HIGH)
Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags