CVE-2025-29989 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	3.1 LOW	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L
dell	CNA	3.1 LOW	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 3%

Vendor	Product	Version
dell	precision_5820_tower_firmware	𝑥 < 2.42.0
dell	precision_7820_tower_firmware	𝑥 < 2.46.0
dell	precision_7920_tower_firmware	𝑥 < 2.46.0
dell	precision_7865_tower_firmware	𝑥 < 1.18.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-1328 - Security Version Number Mutable to Older Versions
Security-version number in hardware is mutable, resulting in the ability to downgrade (roll-back) the boot firmware to vulnerable code versions.

References

https://www.dell.com/support/kbdoc/en-us/000250131/dsa-2025-016