{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T07:42:58.030","vulnerabilities":[{"cve":{"id":"CVE-2025-38746","sourceIdentifier":"security_alert@emc.com","published":"2025-08-06T20:15:27.940","lastModified":"2025-08-18T15:38:10.493","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contains an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure."},{"lang":"es","value":"Dell SupportAssist OS Recovery, versiones anteriores a la 5.5.14.0, contiene una vulnerabilidad de exposición de información confidencial a un agente no autorizado. Un atacante no autenticado con acceso físico podría explotar esta vulnerabilidad, lo que provocaría una divulgación de información."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N","baseScore":3.5,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":2.4,"baseSeverity":"LOW","attackVector":"PHYSICAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.9,"impactScore":1.4}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:supportassist_os_recovery:*:*:*:*:*:*:*:*","versionEndExcluding":"5.5.14.0","matchCriteriaId":"23BD8270-8E44-4B09-9C58-34B1C76D1AB8"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000353093/dsa-2025-315","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}