CVE-2025-36600
Published: 08 July 2025
Summary
CVE-2025-36600 is a high-severity Improper Access Control Applied to Mirrored or Aliased Memory Regions (CWE-1257) vulnerability in Dell Latitude 12 Rugged Extreme 7214 Firmware. Its CVSS base score is 8.2 (High).
Operationally, ranked at the 18.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-20496
Vulnerability details
Dell Client Platform BIOS contains an Improper Access Control Applied to Mirrored or Aliased Memory Regions vulnerability in an externally developed component. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.