Attackers can compromise Dell Enterprise Sonic Distribution

The company has discovered a security vulnerability in Dell's Enterprise Sonic Distribution. It allows affected systems to be completely compromised.

Dell Enterprise Sonic is a network management system, primarily for cloud environments – Dell also mentions private corporate clouds in particular as a “target group”. This allows software for load balancing, for example, to be distributed using containers and managed via a central management system. However, edge and enterprise data center functions are also supported, for example for Dell switches.

Infiltration of sensitive information with consequences

In a security announcement, Dell now warns that attackers from the network with elevated rights can smuggle sensitive information into the logs. They can misuse this to gain unauthorized access to information (CVE-2025-23374, CVSS 8.0, risk “high”). The high-risk assessment indicates that this could potentially affect important information such as access data –. After all, Dell explains that attackers can completely compromise systems as a result.

However, Dell does not discuss what such attacks could look like in detail, how IT managers can recognize them or whether they can implement temporary countermeasures to mitigate the effects of the vulnerability. Further information on how the vulnerability was discovered and whether it has already been abused is also not provided in the security announcement.

The errors correct the versions Dell Enterprise Sonic Distribution 4.4.1 and 4.2.3 or newer. They can be downloaded from the Dell download page, but are not generally accessible. Registration with access data is required beforehand.

Dell already had to plug security gaps in the network management software last November. Attackers were able to gain unauthorized access.

(dmk)