CVE-2025-22479

LOW

3.5

Beschreibung

Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Script injection.

CVE Details

CVSS v3.1 Bewertung3.5

SchweregradLOW

CVSS VektorCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

AngriffsvektorADJACENT_NETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionREQUIRED

Veroffentlicht5/6/2025

Zuletzt geandert5/13/2025

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

dell:storage_manager

Schwachen (CWE)

CWE-22

Referenzen

https://www.dell.com/support/kbdoc/en-us/000317318/dsa-2025-191-security-update-for-storage-center-dell-storage-manager-vulnerabilities(security_alert@emc.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.