CNNVD-202507-2037 Information

Jul 15, 2025 cve

CNNVD ID

CNNVD-202507-2037

CVE-2025-30483

CNNVD Published: 2025-07-15

Description (Chinese)

Dell ECS和Dell ObjectScale都是美国戴尔（Dell）公司的产品。Dell ECS是一款可扩展、易于管理且具有弹性的企业级对象存储解决方案。Dell ObjectScale是一款对象存储平台。 Dell ECS和Dell ObjectScale存在日志信息泄露漏洞，该漏洞源于敏感信息插入日志文件，可能导致信息泄露。以下版本受到影响：Dell ECS 3.8.1.5之前版本和ObjectScale 4.0.0.0版本。

Description (English)

Dell ECS and Dell ObjectScale are products of Dell, United States. Dell ECS is a scalable, manageable and flexible enterprise-level object storage solution. Dell ObjectScale is an object storage platform. Dell ECS and Dell ObjectScale had a leak in log information, which originated from the insertion of sensitive information into log files, which could lead to a leak. The following versions were affected: Dell ECS 3.8.1.5, pre-version, and ObjectScale, version 4.0.0.0.

Hazard Level

High

Vulnerability Type

日志信息泄露

Affected Vendor

戴尔

Published

2025-07-15

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000339124/dsa-2025-242-security-update-for-dell-ecs-and-dell-objectscale-insertion-of-sensitive-information-into-log-file-vulnerability https://nvd.nist.gov/vuln/detail/CVE-2025-30483

Patch

https://www.dell.com/support/kbdoc/en-us/000339124/dsa-2025-242-security-update-for-dell-ecs-and-dell-objectscale-insertion-of-sensitive-information-into-log-file-vulnerability

Share on: