{"id":27762,"date":"2025-11-26T14:51:59","date_gmt":"2025-11-26T14:51:59","guid":{"rendered":"http:\/\/localhost\/?p=27762"},"modified":"2025-11-26T14:51:59","modified_gmt":"2025-11-26T14:51:59","slug":"dell-controlvault-lasso-glinet-vulnerabilities","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=27762","title":{"rendered":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130"},"content":{"rendered":"

{“lastseen”:”2025-11-26T20:05:12″,”description”:”![Dell ControlVault, Lasso, GL.iNet vulnerabilities](https:\/\/blog.talosintelligence.com\/content\/images\/2025\/11\/vuln-roundup.webp)\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed five vulnerabilities in Dell ControlVault 3 firmware and its associated Windows software, four vulnerabilities in Entr’ouvert Lasso, and one vulnerability in GL.iNet Slate AX.\\n\\nThe vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to _Cisco ‘s third-party vulnerability disclosure policy_.\\n\\nFor Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from _Snort.org_, and our latest Vulnerability Advisories are always posted on _Talos Intelligence ‘s website_.\\n\\n## **Dell vulnerabilities**\\n\\n _Discovered by Philippe Laulheret of Cisco Talos._\\n\\nThe Dell ControlVault is a hardware-based security solution designed for user authentication functions. Talos reported five vulnerabilities, as follows:\\n\\n * _TALOS-2025-2173_ (CVE-2025-31649) is a hard-coded password vulnerability. A specially crafted ControlVault API call can lead to an execution of privileged operation.\\n * _TALOS-2025-2174_ (CVE-2025-31361) is a privilege escalation vulnerability. A specially crafted WinBioControlUnit API call can lead to privilege escalation.\\n * _TALOS-2025-2175_ (CVE-2025-36460-CVE-2025-36463) covers multiple out-of-bounds read and write vulnerabilities. A specially crafted WinBioControlUnit API call can lead to memory corruption.\\n * _TALOS-2025-2188_ (CVE-2025-32089) is a buffer overflow vulnerability. A specially crafted ControlVault API call can lead to an arbitrary code execution.\\n * _TALOS-2025-2189_ (CVE-2025-36553) is a buffer overflow vulnerability. A specially crafted ControlVault API call can lead to memory corruption.\\n\\n\\n\\n## **Entr ‘ouvert Lasso vulnerabilities**\\n\\n _Discovered by Keane O ‘Kelley and another member of Cisco Advanced Security Initiative Group._\\n\\nLasso is a free (GNU General Public License) C library that defines processes for federated identities, single sign-on, and related protocols.\\n\\n_TALOS-2025-2193_ (CVE-2025-47151) is a type confusion vulnerability, where a specially crafted SAML response can lead to an arbitrary code execution.\\n\\n_TALOS-2025-2194_ (CVE-2025-46404), _TALOS-2025-2195_ (CVE-2025-46784), and _TALOS-2025-2196_ (CVE-2025-46705) are denial of service vulnerabilities. Specially crafted SAML responses can lead to a denial of service in all three cases.\\n\\n## **GL.iNet Slate AX vulnerability**\\n\\n _Discovered by Lilith \\u003e_\\u003e of Cisco Talos._\\n\\nSlate AX (GL-AXT1800) is a Wi-Fi 6GB travel router. Cisco Talos discovered a firmware downgrade vulnerability, _TALOS-2025-2230_ (CVE-2025-44018), in the OTA Update functionality. A specially crafted .tar file can lead to a firmware downgrade. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.”,”published”:”2025-11-26T18:36:06″,”modified”:”2025-11-26T18:36:06″,”type”:”talosblog”,”title”:”Dell ControlVault, Lasso, GL.iNet vulnerabilities”,”source”:””,”references”:””,”id”:”TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130″,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2025-31361″,”CVE-2025-31649″,”CVE-2025-32089″,”CVE-2025-36460″,”CVE-2025-36463″,”CVE-2025-36553″,”CVE-2025-44018″,”CVE-2025-46404″,”CVE-2025-46705″,”CVE-2025-46784″,”CVE-2025-47151″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:9.8,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.talosintelligence.com\/dell-controlvault-lasso-gl-inet-vulnerabilities\/”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2025-11-26T20:05:12″,”description”:”![Dell ControlVault, Lasso, GL.iNet vulnerabilities](https:\/\/blog.talosintelligence.com\/content\/images\/2025\/11\/vuln-roundup.webp)\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed five vulnerabilities in Dell ControlVault 3 firmware and its associated Windows software,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[9,6,8,35,12,13,7,69,11,5],"class_list":["post-27762","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-critical","tag-cve","tag-cvss","tag-cvss-98","tag-exploit","tag-news","tag-security","tag-talosblog","tag-tapic","tag-vulnerability"],"yoast_head":"\nDell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=27762\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2025-11-26T20:05:12″,”description”:”![Dell ControlVault, Lasso, GL.iNet vulnerabilities](https:\/\/blog.talosintelligence.com\/content\/images\/2025\/11\/vuln-roundup.webp)nnCisco Talos’ Vulnerability Discovery u0026 Research team recently disclosed five vulnerabilities in Dell ControlVault 3 firmware and its associated Windows software,...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=27762\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-11-26T14:51:59+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130\",\"datePublished\":\"2025-11-26T14:51:59+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762\"},\"wordCount\":581,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CRITICAL\",\"CVE\",\"CVSS\",\"CVSS-9.8\",\"exploit\",\"news\",\"Security\",\"talosblog\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_news\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=27762#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762\",\"name\":\"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-11-26T14:51:59+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=27762\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=27762#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=27762","og_locale":"en_US","og_type":"article","og_title":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem","og_description":"{“lastseen”:”2025-11-26T20:05:12″,”description”:”![Dell ControlVault, Lasso, GL.iNet vulnerabilities](https:\/\/blog.talosintelligence.com\/content\/images\/2025\/11\/vuln-roundup.webp)nnCisco Talos’ Vulnerability Discovery u0026 Research team recently disclosed five vulnerabilities in Dell ControlVault 3 firmware and its associated Windows software,...","og_url":"https:\/\/zero.redgem.net\/?p=27762","og_site_name":"zero redgem","article_published_time":"2025-11-26T14:51:59+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=27762#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=27762"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130","datePublished":"2025-11-26T14:51:59+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=27762"},"wordCount":581,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CRITICAL","CVE","CVSS","CVSS-9.8","exploit","news","Security","talosblog","tapic","Vulnerability"],"articleSection":["category_news"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=27762#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=27762","url":"https:\/\/zero.redgem.net\/?p=27762","name":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-11-26T14:51:59+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=27762#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=27762"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=27762#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"Dell ControlVault, Lasso, GL.iNet vulnerabilities_TALOSBLOG:D1595ECDB8B09FA4CD8705D0F5CC8130"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/27762","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=27762"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/27762\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=27762"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=27762"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=27762"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}