Vulnerability Description
Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Thinos | <= 2408 |
| Dell | Latitude 3420 | - |
| Dell | Latitude 3440 | - |
| Dell | Latitude 5440 | - |
| Dell | Latitude 5450 | - |
| Dell | Optiplex 3000 Thin Client | - |
| Dell | Optiplex 5400 All-In-One | - |
| Dell | Optiplex 7410 All-In-One | - |
| Dell | Optiplex 7420 All-In-One | - |
| Dell | Wyse 5070 Thin Client | - |
| Dell | Wyse 5470 All-In-One Thin Client | - |
| Dell | Wyse 5470 Mobile Thin Client | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-27688?
CVE-2025-27688 is a vulnerability with a CVSS score of 7.8 (HIGH). Dell ThinOS 2408 and prior, contains an improper permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
How severe is CVE-2025-27688?
CVE-2025-27688 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-27688?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Thinos, Dell Latitude 3420, Dell Latitude 3440, Dell Latitude 5440, Dell Latitude 5450.