CVE-2025-21117
Description
Dell Avamar, version 19.4 or later, contains an access token reuse vulnerability in the AUI. A low privileged local attacker could potentially exploit this vulnerability, leading to fully impersonating the user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Dell Avamar AUI access token reuse vulnerability allows low privileged local attacker to fully impersonate another user.
Vulnerability
Dell Avamar versions 19.4 and later contain an access token reuse vulnerability in the AUI (Avamar User Interface). A low privileged local attacker can exploit this flaw to reuse an access token intended for another user, leading to full impersonation of that user. [1]
Exploitation
An attacker with low-level local access to the Avamar system can leverage the token reuse flaw. The exact sequence involves capturing or reusing a valid access token from the AUI session, then presenting it to impersonate the targeted user. No additional authentication or user interaction is required beyond initial low-privilege access.
Impact
Successful exploitation allows the attacker to fully impersonate the victim user, gaining all privileges and access rights associated with that user within the Avamar environment. This can lead to unauthorized data access, configuration changes, or further lateral movement.
Mitigation
Dell has released a security update to address this vulnerability, detailed in advisory DSA-2025-071 [1]. Users should apply the recommended patch to affected Dell Avamar installations (version 19.4 and later) as soon as possible. No workaround is provided in the advisory.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: >=19.4
- Range: 19.4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.