CVE-2025-45378

CVE-2025-45378 is a vulnerability in the restricted shell of Dell CloudLink, affecting versions 8.0 through 8.1.2. Classified under CWE-78 (OS Command Injection), it enables a privileged user with a known password to break into the command shell of the CloudLink server, gain shell access, escalate privileges, and obtain unauthorized access to the system. The issue was published on 2025-11-05 and carries a CVSS v3.1 base score of 9.1 (AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H), indicating critical severity with network accessibility, low attack complexity, high privileges required, changed scope, and high impacts on confidentiality, integrity, and availability.

Exploitation targets a privileged user account where the password is known to the attacker. If SSH is enabled with the server's web credentials, the attack can be performed remotely over the network. Upon success, the attacker achieves full command shell access, privilege escalation, and broad unauthorized control over the CloudLink server and underlying system resources.

Dell advisories detail mitigation in DSA-2025-374, a security update addressing multiple vulnerabilities in Dell CloudLink. Security practitioners should consult https://www.dell.com/support/kbdoc/en-us/000384363/dsa-2025-374-security-update-for-dell-cloudlink-multiple-security-vulnerabilities for patch deployment instructions and additional remediation steps.