关键漏洞信息 漏洞概述 标题: DSA-2025-302: Security Update for Dell Digital Delivery for an Insufficiently Protected Credentials Vulnerability 摘要: Dell Digital Delivery versions prior to 5.6.1.0 contains an Insufficiently Protected Credentials vulnerability. A remote authenticated attacker could potentially exploit this vulnerability, leading to Information Disclosure. CVE信息 CVE编号: CVE-2025-3879 CVSS Base Score: 7.2 CVSS Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N 影响的产品和修复措施 产品: Dell Digital Delivery 受影响的版本: Versions prior to 5.6.1.0 修复后的版本: Version 5.6.1.0 or later 发布日期: 07/28/2025 链接: How to Download and Install Dell Digital Delivery 修订历史 版本: 1.0 日期: 2025.07.31 描述: Initial Release 致谢 报告者: l0p0d 法律免责声明 提供了关于使用此安全公告的信息和建议,但不提供任何明示或暗示的保证。