CVE-2025-36461
Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability
CVSS Score
7.3
EPSS Score
0.0%
EPSS Percentile
0th
Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An attacker can issue an api call to trigger this vulnerability.Β This vulnerability is triggered when submitting a `WinBioControlUnit` call to the StorageAdapter with the ControlCode 0 (`WBIO_USH_GET_TEMPLATE`) and with either and an invalid `ReceiveBuferSize` and/or an invalid `SendBufferSize`.
| CWE | CWE-805 |
| Vendor | broadcom |
| Product | bcm5820x |
| Ecosystems | |
| Industries | Technology |
| Published | Nov 17, 2025 |
| Last Updated | Feb 26, 2026 |
Stay Ahead of the Next One
Get instant alerts for broadcom bcm5820x
Be the first to know when new high vulnerabilities affecting broadcom bcm5820x are published β delivered to Slack, Telegram or Discord.
Get Free Alerts β
Free Β· No credit card Β· 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected Versions
Broadcom / BCM5820X
NA
Dell / ControlVault3
0 < 5.15.14.19
Dell / ControlVault3 Plus
0 < 6.2.36.47
References
Credits
Discovered by Philippe Laulheret of Cisco Talos.