CVE-2025-36573 – Dell Smart Dock Firmware versions before 01.00.... (How to Fix)

Q: What is the severity of CVE-2025-36573?

CVE-2025-36573 has a CVSS score of 7.1 (HIGH). Dell Smart Dock Firmware versions before 01.00.08.01 write sensitive information to log files that local users can read. This allows information disclosure to anyone with physical or local system access to affected docking stations.

📋 TL;DR

Dell Smart Dock Firmware versions before 01.00.08.01 write sensitive information to log files that local users can read. This allows information disclosure to anyone with physical or local system access to affected docking stations.

💻 Affected Systems

Products:

Dell Smart Dock

Versions: All versions prior to 01.00.08.01

Operating Systems: Any OS using Dell Smart Dock

Default Config Vulnerable: ⚠️ Yes

Notes: Affects Dell Smart Dock hardware with vulnerable firmware. Requires local/physical access to exploit.

📦 What is this software?

Pro Smart Dock Sd25 Firmware by Dell

View all CVEs affecting Pro Smart Dock Sd25 Firmware →

Pro Thunderbolt 4 Smart Dock Sd25tb4 Firmware by Dell

View all CVEs affecting Pro Thunderbolt 4 Smart Dock Sd25tb4 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local attacker extracts credentials, encryption keys, or other sensitive data from logs, leading to privilege escalation or lateral movement within the network.

🟠

Likely Case

Local user accidentally discovers sensitive information in logs while troubleshooting, or malicious insider extracts limited sensitive data.

🟢

If Mitigated

Logs are properly secured with restricted permissions, minimizing exposure even if information is logged.

🌐 Internet-Facing: LOW - This requires local/physical access to the docking station or the system it's connected to.

🏢 Internal Only: MEDIUM - Internal users with physical access to docking stations could exploit this, but requires local access.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploitation requires local access to read log files. No authentication bypass needed beyond local system access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 01.00.08.01 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000323183/dsa-2025-218

Restart Required: Yes

Instructions:

1. Download firmware update from Dell Support site. 2. Connect Smart Dock to system. 3. Run firmware update utility. 4. Follow on-screen instructions. 5. Restart docking station after update completes.

🔧 Temporary Workarounds

Restrict log file permissions

linux

Set strict file permissions on Smart Dock log directories to prevent unauthorized reading.

chmod 600 /path/to/smartdock/logs/*
chown root:root /path/to/smartdock/logs/

Disable detailed logging

all

Configure Smart Dock to log only non-sensitive information if possible.

🧯 If You Can't Patch

Physically secure docking stations to prevent unauthorized local access
Implement strict access controls on systems connected to Smart Docks

🔍 How to Verify

Check if Vulnerable:

Check firmware version in Dell Peripheral Manager or device properties. Versions below 01.00.08.01 are vulnerable.

Check Version:

Check via Dell Peripheral Manager application or device management interface

Verify Fix Applied:

Confirm firmware version is 01.00.08.01 or higher after update.

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to Smart Dock log files
Sensitive data patterns appearing in unexpected log locations

Network Indicators:

Unusual local file access patterns to docking station logs

SIEM Query:

source="smartdock_logs" AND (sensitive_data_patterns OR unauthorized_access)

📊 Metadata

CVE ID: CVE-2025-36573

CVSS v3 Score: 7.1 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CWE: CWE-532

EPSS Score: 0.02% exploit probability (3.4th percentile)

Published: June 12, 2025

Last Updated: January 13, 2026

🔗 References

https://www.dell.com/support/kbdoc/en-us/000323183/dsa-2025-218 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-36573, you might also want to check these: